Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2024-36017 (GCVE-0-2024-36017)
Vulnerability from cvelistv5
Published
2024-05-30 12:52
Modified
2025-05-04 09:10
Severity ?
VLAI Severity ?
EPSS score ?
Summary
In the Linux kernel, the following vulnerability has been resolved:
rtnetlink: Correct nested IFLA_VF_VLAN_LIST attribute validation
Each attribute inside a nested IFLA_VF_VLAN_LIST is assumed to be a
struct ifla_vf_vlan_info so the size of such attribute needs to be at least
of sizeof(struct ifla_vf_vlan_info) which is 14 bytes.
The current size validation in do_setvfinfo is against NLA_HDRLEN (4 bytes)
which is less than sizeof(struct ifla_vf_vlan_info) so this validation
is not enough and a too small attribute might be cast to a
struct ifla_vf_vlan_info, this might result in an out of bands
read access when accessing the saved (casted) entry in ivvl.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| ► | Linux | Linux |
Version: 79aab093a0b5370d7fc4e99df75996f4744dc03f Version: 79aab093a0b5370d7fc4e99df75996f4744dc03f Version: 79aab093a0b5370d7fc4e99df75996f4744dc03f Version: 79aab093a0b5370d7fc4e99df75996f4744dc03f Version: 79aab093a0b5370d7fc4e99df75996f4744dc03f Version: 79aab093a0b5370d7fc4e99df75996f4744dc03f Version: 79aab093a0b5370d7fc4e99df75996f4744dc03f Version: 79aab093a0b5370d7fc4e99df75996f4744dc03f |
|
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-36017",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-06-10T18:50:37.165926Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-06-10T18:50:48.941Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-08-02T03:30:12.437Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://git.kernel.org/stable/c/8ac69ff2d0d5be9734c4402de932aa3dc8549c1a"
},
{
"tags": [
"x_transferred"
],
"url": "https://git.kernel.org/stable/c/5e7ef2d88666a0212db8c38e6703864b9ce70169"
},
{
"tags": [
"x_transferred"
],
"url": "https://git.kernel.org/stable/c/6c8f44b02500c7d14b5e6618fe4ef9a0da47b3de"
},
{
"tags": [
"x_transferred"
],
"url": "https://git.kernel.org/stable/c/f3c1bf3054f96ddeab0621d920445bada769b40e"
},
{
"tags": [
"x_transferred"
],
"url": "https://git.kernel.org/stable/c/6e4c7193954f4faab92f6e8d88bc5565317b44e7"
},
{
"tags": [
"x_transferred"
],
"url": "https://git.kernel.org/stable/c/206003c748b88890a910ef7142d18f77be57550b"
},
{
"tags": [
"x_transferred"
],
"url": "https://git.kernel.org/stable/c/4a4b9757789a1551d2df130df23bfb3545bfa7e8"
},
{
"tags": [
"x_transferred"
],
"url": "https://git.kernel.org/stable/c/1aec77b2bb2ed1db0f5efc61c4c1ca3813307489"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00019.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "Linux",
"programFiles": [
"net/core/rtnetlink.c"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"lessThan": "8ac69ff2d0d5be9734c4402de932aa3dc8549c1a",
"status": "affected",
"version": "79aab093a0b5370d7fc4e99df75996f4744dc03f",
"versionType": "git"
},
{
"lessThan": "5e7ef2d88666a0212db8c38e6703864b9ce70169",
"status": "affected",
"version": "79aab093a0b5370d7fc4e99df75996f4744dc03f",
"versionType": "git"
},
{
"lessThan": "6c8f44b02500c7d14b5e6618fe4ef9a0da47b3de",
"status": "affected",
"version": "79aab093a0b5370d7fc4e99df75996f4744dc03f",
"versionType": "git"
},
{
"lessThan": "f3c1bf3054f96ddeab0621d920445bada769b40e",
"status": "affected",
"version": "79aab093a0b5370d7fc4e99df75996f4744dc03f",
"versionType": "git"
},
{
"lessThan": "6e4c7193954f4faab92f6e8d88bc5565317b44e7",
"status": "affected",
"version": "79aab093a0b5370d7fc4e99df75996f4744dc03f",
"versionType": "git"
},
{
"lessThan": "206003c748b88890a910ef7142d18f77be57550b",
"status": "affected",
"version": "79aab093a0b5370d7fc4e99df75996f4744dc03f",
"versionType": "git"
},
{
"lessThan": "4a4b9757789a1551d2df130df23bfb3545bfa7e8",
"status": "affected",
"version": "79aab093a0b5370d7fc4e99df75996f4744dc03f",
"versionType": "git"
},
{
"lessThan": "1aec77b2bb2ed1db0f5efc61c4c1ca3813307489",
"status": "affected",
"version": "79aab093a0b5370d7fc4e99df75996f4744dc03f",
"versionType": "git"
}
]
},
{
"defaultStatus": "affected",
"product": "Linux",
"programFiles": [
"net/core/rtnetlink.c"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"status": "affected",
"version": "4.9"
},
{
"lessThan": "4.9",
"status": "unaffected",
"version": "0",
"versionType": "semver"
},
{
"lessThanOrEqual": "4.19.*",
"status": "unaffected",
"version": "4.19.314",
"versionType": "semver"
},
{
"lessThanOrEqual": "5.4.*",
"status": "unaffected",
"version": "5.4.276",
"versionType": "semver"
},
{
"lessThanOrEqual": "5.10.*",
"status": "unaffected",
"version": "5.10.217",
"versionType": "semver"
},
{
"lessThanOrEqual": "5.15.*",
"status": "unaffected",
"version": "5.15.159",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.1.*",
"status": "unaffected",
"version": "6.1.91",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"version": "6.6.31",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.8.*",
"status": "unaffected",
"version": "6.8.10",
"versionType": "semver"
},
{
"lessThanOrEqual": "*",
"status": "unaffected",
"version": "6.9",
"versionType": "original_commit_for_fix"
}
]
}
],
"cpeApplicability": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "4.19.314",
"versionStartIncluding": "4.9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "5.4.276",
"versionStartIncluding": "4.9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "5.10.217",
"versionStartIncluding": "4.9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "5.15.159",
"versionStartIncluding": "4.9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.1.91",
"versionStartIncluding": "4.9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.6.31",
"versionStartIncluding": "4.9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.8.10",
"versionStartIncluding": "4.9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.9",
"versionStartIncluding": "4.9",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In the Linux kernel, the following vulnerability has been resolved:\n\nrtnetlink: Correct nested IFLA_VF_VLAN_LIST attribute validation\n\nEach attribute inside a nested IFLA_VF_VLAN_LIST is assumed to be a\nstruct ifla_vf_vlan_info so the size of such attribute needs to be at least\nof sizeof(struct ifla_vf_vlan_info) which is 14 bytes.\nThe current size validation in do_setvfinfo is against NLA_HDRLEN (4 bytes)\nwhich is less than sizeof(struct ifla_vf_vlan_info) so this validation\nis not enough and a too small attribute might be cast to a\nstruct ifla_vf_vlan_info, this might result in an out of bands\nread access when accessing the saved (casted) entry in ivvl."
}
],
"providerMetadata": {
"dateUpdated": "2025-05-04T09:10:39.898Z",
"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"shortName": "Linux"
},
"references": [
{
"url": "https://git.kernel.org/stable/c/8ac69ff2d0d5be9734c4402de932aa3dc8549c1a"
},
{
"url": "https://git.kernel.org/stable/c/5e7ef2d88666a0212db8c38e6703864b9ce70169"
},
{
"url": "https://git.kernel.org/stable/c/6c8f44b02500c7d14b5e6618fe4ef9a0da47b3de"
},
{
"url": "https://git.kernel.org/stable/c/f3c1bf3054f96ddeab0621d920445bada769b40e"
},
{
"url": "https://git.kernel.org/stable/c/6e4c7193954f4faab92f6e8d88bc5565317b44e7"
},
{
"url": "https://git.kernel.org/stable/c/206003c748b88890a910ef7142d18f77be57550b"
},
{
"url": "https://git.kernel.org/stable/c/4a4b9757789a1551d2df130df23bfb3545bfa7e8"
},
{
"url": "https://git.kernel.org/stable/c/1aec77b2bb2ed1db0f5efc61c4c1ca3813307489"
}
],
"title": "rtnetlink: Correct nested IFLA_VF_VLAN_LIST attribute validation",
"x_generator": {
"engine": "bippy-1.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"assignerShortName": "Linux",
"cveId": "CVE-2024-36017",
"datePublished": "2024-05-30T12:52:03.554Z",
"dateReserved": "2024-05-17T13:50:33.154Z",
"dateUpdated": "2025-05-04T09:10:39.898Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"descriptions": "[{\"lang\": \"en\", \"value\": \"In the Linux kernel, the following vulnerability has been resolved:\\n\\nrtnetlink: Correct nested IFLA_VF_VLAN_LIST attribute validation\\n\\nEach attribute inside a nested IFLA_VF_VLAN_LIST is assumed to be a\\nstruct ifla_vf_vlan_info so the size of such attribute needs to be at least\\nof sizeof(struct ifla_vf_vlan_info) which is 14 bytes.\\nThe current size validation in do_setvfinfo is against NLA_HDRLEN (4 bytes)\\nwhich is less than sizeof(struct ifla_vf_vlan_info) so this validation\\nis not enough and a too small attribute might be cast to a\\nstruct ifla_vf_vlan_info, this might result in an out of bands\\nread access when accessing the saved (casted) entry in ivvl.\"}, {\"lang\": \"es\", \"value\": \"En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: rtnetlink: Validaci\\u00f3n correcta del atributo IFLA_VF_VLAN_LIST anidado. Se supone que cada atributo dentro de un IFLA_VF_VLAN_LIST anidado es una estructura ifla_vf_vlan_info, por lo que el tama\\u00f1o de dicho atributo debe ser al menos de sizeof(struct ifla_vf_vlan_info), que es de 14 bytes. La validaci\\u00f3n de tama\\u00f1o actual en do_setvfinfo es contra NLA_HDRLEN (4 bytes), que es menor que sizeof(struct ifla_vf_vlan_info), por lo que esta validaci\\u00f3n no es suficiente y un atributo demasiado peque\\u00f1o podr\\u00eda convertirse en una estructura ifla_vf_vlan_info, esto podr\\u00eda resultar en un acceso de lectura fuera de banda al acceder a la entrada guardada (transmitida) en ivvl.\"}]",
"id": "CVE-2024-36017",
"lastModified": "2024-11-21T09:21:26.720",
"published": "2024-05-30T13:15:49.830",
"references": "[{\"url\": \"https://git.kernel.org/stable/c/1aec77b2bb2ed1db0f5efc61c4c1ca3813307489\", \"source\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}, {\"url\": \"https://git.kernel.org/stable/c/206003c748b88890a910ef7142d18f77be57550b\", \"source\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}, {\"url\": \"https://git.kernel.org/stable/c/4a4b9757789a1551d2df130df23bfb3545bfa7e8\", \"source\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}, {\"url\": \"https://git.kernel.org/stable/c/5e7ef2d88666a0212db8c38e6703864b9ce70169\", \"source\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}, {\"url\": \"https://git.kernel.org/stable/c/6c8f44b02500c7d14b5e6618fe4ef9a0da47b3de\", \"source\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}, {\"url\": \"https://git.kernel.org/stable/c/6e4c7193954f4faab92f6e8d88bc5565317b44e7\", \"source\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}, {\"url\": \"https://git.kernel.org/stable/c/8ac69ff2d0d5be9734c4402de932aa3dc8549c1a\", \"source\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}, {\"url\": \"https://git.kernel.org/stable/c/f3c1bf3054f96ddeab0621d920445bada769b40e\", \"source\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}, {\"url\": \"https://git.kernel.org/stable/c/1aec77b2bb2ed1db0f5efc61c4c1ca3813307489\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://git.kernel.org/stable/c/206003c748b88890a910ef7142d18f77be57550b\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://git.kernel.org/stable/c/4a4b9757789a1551d2df130df23bfb3545bfa7e8\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://git.kernel.org/stable/c/5e7ef2d88666a0212db8c38e6703864b9ce70169\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://git.kernel.org/stable/c/6c8f44b02500c7d14b5e6618fe4ef9a0da47b3de\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://git.kernel.org/stable/c/6e4c7193954f4faab92f6e8d88bc5565317b44e7\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://git.kernel.org/stable/c/8ac69ff2d0d5be9734c4402de932aa3dc8549c1a\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://git.kernel.org/stable/c/f3c1bf3054f96ddeab0621d920445bada769b40e\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2024/06/msg00019.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
"sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"vulnStatus": "Awaiting Analysis"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2024-36017\",\"sourceIdentifier\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"published\":\"2024-05-30T13:15:49.830\",\"lastModified\":\"2024-11-21T09:21:26.720\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In the Linux kernel, the following vulnerability has been resolved:\\n\\nrtnetlink: Correct nested IFLA_VF_VLAN_LIST attribute validation\\n\\nEach attribute inside a nested IFLA_VF_VLAN_LIST is assumed to be a\\nstruct ifla_vf_vlan_info so the size of such attribute needs to be at least\\nof sizeof(struct ifla_vf_vlan_info) which is 14 bytes.\\nThe current size validation in do_setvfinfo is against NLA_HDRLEN (4 bytes)\\nwhich is less than sizeof(struct ifla_vf_vlan_info) so this validation\\nis not enough and a too small attribute might be cast to a\\nstruct ifla_vf_vlan_info, this might result in an out of bands\\nread access when accessing the saved (casted) entry in ivvl.\"},{\"lang\":\"es\",\"value\":\"En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: rtnetlink: Validaci\u00f3n correcta del atributo IFLA_VF_VLAN_LIST anidado. Se supone que cada atributo dentro de un IFLA_VF_VLAN_LIST anidado es una estructura ifla_vf_vlan_info, por lo que el tama\u00f1o de dicho atributo debe ser al menos de sizeof(struct ifla_vf_vlan_info), que es de 14 bytes. La validaci\u00f3n de tama\u00f1o actual en do_setvfinfo es contra NLA_HDRLEN (4 bytes), que es menor que sizeof(struct ifla_vf_vlan_info), por lo que esta validaci\u00f3n no es suficiente y un atributo demasiado peque\u00f1o podr\u00eda convertirse en una estructura ifla_vf_vlan_info, esto podr\u00eda resultar en un acceso de lectura fuera de banda al acceder a la entrada guardada (transmitida) en ivvl.\"}],\"metrics\":{},\"references\":[{\"url\":\"https://git.kernel.org/stable/c/1aec77b2bb2ed1db0f5efc61c4c1ca3813307489\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/206003c748b88890a910ef7142d18f77be57550b\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/4a4b9757789a1551d2df130df23bfb3545bfa7e8\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/5e7ef2d88666a0212db8c38e6703864b9ce70169\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/6c8f44b02500c7d14b5e6618fe4ef9a0da47b3de\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/6e4c7193954f4faab92f6e8d88bc5565317b44e7\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/8ac69ff2d0d5be9734c4402de932aa3dc8549c1a\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/f3c1bf3054f96ddeab0621d920445bada769b40e\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/1aec77b2bb2ed1db0f5efc61c4c1ca3813307489\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://git.kernel.org/stable/c/206003c748b88890a910ef7142d18f77be57550b\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://git.kernel.org/stable/c/4a4b9757789a1551d2df130df23bfb3545bfa7e8\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://git.kernel.org/stable/c/5e7ef2d88666a0212db8c38e6703864b9ce70169\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://git.kernel.org/stable/c/6c8f44b02500c7d14b5e6618fe4ef9a0da47b3de\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://git.kernel.org/stable/c/6e4c7193954f4faab92f6e8d88bc5565317b44e7\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://git.kernel.org/stable/c/8ac69ff2d0d5be9734c4402de932aa3dc8549c1a\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://git.kernel.org/stable/c/f3c1bf3054f96ddeab0621d920445bada769b40e\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2024/06/msg00019.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://git.kernel.org/stable/c/8ac69ff2d0d5be9734c4402de932aa3dc8549c1a\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.kernel.org/stable/c/5e7ef2d88666a0212db8c38e6703864b9ce70169\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.kernel.org/stable/c/6c8f44b02500c7d14b5e6618fe4ef9a0da47b3de\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.kernel.org/stable/c/f3c1bf3054f96ddeab0621d920445bada769b40e\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.kernel.org/stable/c/6e4c7193954f4faab92f6e8d88bc5565317b44e7\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.kernel.org/stable/c/206003c748b88890a910ef7142d18f77be57550b\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.kernel.org/stable/c/4a4b9757789a1551d2df130df23bfb3545bfa7e8\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.kernel.org/stable/c/1aec77b2bb2ed1db0f5efc61c4c1ca3813307489\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2024/06/msg00019.html\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T03:30:12.437Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-36017\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-06-10T18:50:37.165926Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-06-10T18:50:46.191Z\"}}], \"cna\": {\"title\": \"rtnetlink: Correct nested IFLA_VF_VLAN_LIST attribute validation\", \"affected\": [{\"repo\": \"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\", \"vendor\": \"Linux\", \"product\": \"Linux\", \"versions\": [{\"status\": \"affected\", \"version\": \"79aab093a0b5370d7fc4e99df75996f4744dc03f\", \"lessThan\": \"8ac69ff2d0d5be9734c4402de932aa3dc8549c1a\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"79aab093a0b5370d7fc4e99df75996f4744dc03f\", \"lessThan\": \"5e7ef2d88666a0212db8c38e6703864b9ce70169\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"79aab093a0b5370d7fc4e99df75996f4744dc03f\", \"lessThan\": \"6c8f44b02500c7d14b5e6618fe4ef9a0da47b3de\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"79aab093a0b5370d7fc4e99df75996f4744dc03f\", \"lessThan\": \"f3c1bf3054f96ddeab0621d920445bada769b40e\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"79aab093a0b5370d7fc4e99df75996f4744dc03f\", \"lessThan\": \"6e4c7193954f4faab92f6e8d88bc5565317b44e7\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"79aab093a0b5370d7fc4e99df75996f4744dc03f\", \"lessThan\": \"206003c748b88890a910ef7142d18f77be57550b\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"79aab093a0b5370d7fc4e99df75996f4744dc03f\", \"lessThan\": \"4a4b9757789a1551d2df130df23bfb3545bfa7e8\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"79aab093a0b5370d7fc4e99df75996f4744dc03f\", \"lessThan\": \"1aec77b2bb2ed1db0f5efc61c4c1ca3813307489\", \"versionType\": \"git\"}], \"programFiles\": [\"net/core/rtnetlink.c\"], \"defaultStatus\": \"unaffected\"}, {\"repo\": \"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\", \"vendor\": \"Linux\", \"product\": \"Linux\", \"versions\": [{\"status\": \"affected\", \"version\": \"4.9\"}, {\"status\": \"unaffected\", \"version\": \"0\", \"lessThan\": \"4.9\", \"versionType\": \"semver\"}, {\"status\": \"unaffected\", \"version\": \"4.19.314\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"4.19.*\"}, {\"status\": \"unaffected\", \"version\": \"5.4.276\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"5.4.*\"}, {\"status\": \"unaffected\", \"version\": \"5.10.217\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"5.10.*\"}, {\"status\": \"unaffected\", \"version\": \"5.15.159\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"5.15.*\"}, {\"status\": \"unaffected\", \"version\": \"6.1.91\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.1.*\"}, {\"status\": \"unaffected\", \"version\": \"6.6.31\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.6.*\"}, {\"status\": \"unaffected\", \"version\": \"6.8.10\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.8.*\"}, {\"status\": \"unaffected\", \"version\": \"6.9\", \"versionType\": \"original_commit_for_fix\", \"lessThanOrEqual\": \"*\"}], \"programFiles\": [\"net/core/rtnetlink.c\"], \"defaultStatus\": \"affected\"}], \"references\": [{\"url\": \"https://git.kernel.org/stable/c/8ac69ff2d0d5be9734c4402de932aa3dc8549c1a\"}, {\"url\": \"https://git.kernel.org/stable/c/5e7ef2d88666a0212db8c38e6703864b9ce70169\"}, {\"url\": \"https://git.kernel.org/stable/c/6c8f44b02500c7d14b5e6618fe4ef9a0da47b3de\"}, {\"url\": \"https://git.kernel.org/stable/c/f3c1bf3054f96ddeab0621d920445bada769b40e\"}, {\"url\": \"https://git.kernel.org/stable/c/6e4c7193954f4faab92f6e8d88bc5565317b44e7\"}, {\"url\": \"https://git.kernel.org/stable/c/206003c748b88890a910ef7142d18f77be57550b\"}, {\"url\": \"https://git.kernel.org/stable/c/4a4b9757789a1551d2df130df23bfb3545bfa7e8\"}, {\"url\": \"https://git.kernel.org/stable/c/1aec77b2bb2ed1db0f5efc61c4c1ca3813307489\"}], \"x_generator\": {\"engine\": \"bippy-1.2.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"In the Linux kernel, the following vulnerability has been resolved:\\n\\nrtnetlink: Correct nested IFLA_VF_VLAN_LIST attribute validation\\n\\nEach attribute inside a nested IFLA_VF_VLAN_LIST is assumed to be a\\nstruct ifla_vf_vlan_info so the size of such attribute needs to be at least\\nof sizeof(struct ifla_vf_vlan_info) which is 14 bytes.\\nThe current size validation in do_setvfinfo is against NLA_HDRLEN (4 bytes)\\nwhich is less than sizeof(struct ifla_vf_vlan_info) so this validation\\nis not enough and a too small attribute might be cast to a\\nstruct ifla_vf_vlan_info, this might result in an out of bands\\nread access when accessing the saved (casted) entry in ivvl.\"}], \"cpeApplicability\": [{\"nodes\": [{\"negate\": false, \"cpeMatch\": [{\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"4.19.314\", \"versionStartIncluding\": \"4.9\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"5.4.276\", \"versionStartIncluding\": \"4.9\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"5.10.217\", \"versionStartIncluding\": \"4.9\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"5.15.159\", \"versionStartIncluding\": \"4.9\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"6.1.91\", \"versionStartIncluding\": \"4.9\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"6.6.31\", \"versionStartIncluding\": \"4.9\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"6.8.10\", \"versionStartIncluding\": \"4.9\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"6.9\", \"versionStartIncluding\": \"4.9\"}], \"operator\": \"OR\"}]}], \"providerMetadata\": {\"orgId\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\", \"shortName\": \"Linux\", \"dateUpdated\": \"2025-05-04T09:10:39.898Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2024-36017\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-05-04T09:10:39.898Z\", \"dateReserved\": \"2024-05-17T13:50:33.154Z\", \"assignerOrgId\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\", \"datePublished\": \"2024-05-30T12:52:03.554Z\", \"assignerShortName\": \"Linux\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
suse-su-2024:2360-1
Vulnerability from csaf_suse
Published
2024-07-09 14:01
Modified
2024-07-09 14:01
Summary
Security update for the Linux Kernel
Notes
Title of the patch
Security update for the Linux Kernel
Description of the patch
The SUSE Linux Enterprise 12 SP5 Azure kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2021-47103: net: sock: preserve kabi for sock (bsc#1221010).
- CVE-2021-47191: Fix out-of-bound read in resp_readcap16() (bsc#1222866).
- CVE-2021-47267: usb: fix various gadget panics on 10gbps cabling (bsc#1224993).
- CVE-2021-47270: usb: fix various gadgets null ptr deref on 10gbps cabling (bsc#1224997).
- CVE-2021-47293: net/sched: act_skbmod: Skip non-Ethernet packets (bsc#1224978).
- CVE-2021-47294: netrom: Decrease sock refcount when sock timers expire (bsc#1224977).
- CVE-2021-47297: net: fix uninit-value in caif_seqpkt_sendmsg (bsc#1224976).
- CVE-2021-47309: net: validate lwtstate->data before returning from skb_tunnel_info() (bsc#1224967).
- CVE-2021-47354: drm/sched: Avoid data corruptions (bsc#1225140)
- CVE-2021-47372: net: macb: fix use after free on rmmod (bsc#1225184).
- CVE-2021-47379: blk-cgroup: fix UAF by grabbing blkcg lock before destroying blkg pd (bsc#1225203).
- CVE-2021-47407: KVM: x86: Handle SRCU initialization failure during page track init (bsc#1225306).
- CVE-2021-47418: net_sched: fix NULL deref in fifo_set_limit() (bsc#1225337).
- CVE-2021-47434: xhci: Fix commad ring abort, write all 64 bits to CRCR register (bsc#1225232).
- CVE-2021-47445: drm/msm: Fix null pointer dereference on pointer edp (bsc#1225261)
- CVE-2021-47518: nfc: fix potential NULL pointer deref in nfc_genl_dump_ses_done (bsc#1225372).
- CVE-2021-47544: tcp: fix page frag corruption on page fault (bsc#1225463).
- CVE-2021-47566: Fix clearing user buffer by properly using clear_user() (bsc#1225514).
- CVE-2021-47571: staging: rtl8192e: Fix use after free in _rtl92e_pci_disconnect() (bsc#1225518).
- CVE-2021-47587: net: systemport: Add global locking for descriptor lifecycle (bsc#1226567).
- CVE-2021-47602: mac80211: track only QoS data frames for admission control (bsc#1226554).
- CVE-2021-47609: firmware: arm_scpi: Fix string overflow in SCPI genpd driver (bsc#1226562)
- CVE-2022-48732: drm/nouveau: fix off by one in BIOS boundary checking (bsc#1226716)
- CVE-2022-48733: btrfs: fix use-after-free after failure to create a snapshot (bsc#1226718).
- CVE-2022-48740: selinux: fix double free of cond_list on error paths (bsc#1226699).
- CVE-2022-48743: net: amd-xgbe: Fix skb data length underflow (bsc#1226705).
- CVE-2022-48756: drm/msm/dsi: invalid parameter check in msm_dsi_phy_enable (bsc#1226698)
- CVE-2022-48759: rpmsg: char: Fix race between the release of rpmsg_ctrldev and cdev (bsc#1226711).
- CVE-2022-48761: usb: xhci-plat: fix crash when suspend if remote wake enable (bsc#1226701).
- CVE-2022-48772: media: lgdt3306a: Add a check against null-pointer-def (bsc#1226976).
- CVE-2023-52622: ext4: avoid online resizing failures due to oversized flex bg (bsc#1222080).
- CVE-2023-52675: powerpc/imc-pmu: Add a null pointer check in update_events_in_group() (bsc#1224504).
- CVE-2023-52737: btrfs: lock the inode in shared mode before starting fiemap (bsc#1225484).
- CVE-2023-52752: smb: client: fix use-after-free bug in cifs_debug_data_proc_show() (bsc#1225487).
- CVE-2023-52754: media: imon: fix access to invalid resource for the second interface (bsc#1225490).
- CVE-2023-52757: Fixed potential deadlock when releasing mids (bsc#1225548).
- CVE-2023-52762: virtio-blk: fix implicit overflow on virtio_max_dma_size (bsc#1225573).
- CVE-2023-52764: media: gspca: cpia1: shift-out-of-bounds in set_flicker (bsc#1225571).
- CVE-2023-52784: bonding: stop the device in bond_setup_by_slave() (bsc#1224946).
- CVE-2023-52832: wifi: mac80211: do not return unset power in ieee80211_get_tx_power() (bsc#1225577).
- CVE-2023-52834: atl1c: Work around the DMA RX overflow issue (bsc#1225599).
- CVE-2023-52835: perf/core: Bail out early if the request AUX area is out of bound (bsc#1225602).
- CVE-2023-52843: llc: verify mac len before reading mac header (bsc#1224951).
- CVE-2023-52845: tipc: Change nla_policy for bearer-related names to NLA_NUL_STRING (bsc#1225585).
- CVE-2023-52855: usb: dwc2: fix possible NULL pointer dereference caused by driver concurrency (bsc#1225583).
- CVE-2023-52881: tcp: do not accept ACK of bytes we never sent (bsc#1225611).
- CVE-2024-26633: ip6_tunnel: fix NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tlv_enc_lim() (bsc#1221647).
- CVE-2024-26641: ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv() (bsc#1221654).
- CVE-2024-26679: Fixed read sk->sk_family once in inet_recv_error() (bsc#1222385).
- CVE-2024-26687: Fixed xen/events close evtchn after mapping cleanup (bsc#1222435).
- CVE-2024-26720: mm: Avoid overflows in dirty throttling logic (bsc#1222364).
- CVE-2024-26813: vfio/platform: Create persistent IRQ handlers (bsc#1222809).
- CVE-2024-26863: hsr: Fix uninit-value access in hsr_get_node() (bsc#1223021).
- CVE-2024-26894: ACPI: processor_idle: Fix memory leak in acpi_processor_power_exit() (bsc#1223043).
- CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223384).
- CVE-2024-26928: Fixed potential UAF in cifs_debug_files_proc_show() (bsc#1223532).
- CVE-2024-26973: fat: fix uninitialized field in nostale filehandles (git-fixesbsc#1223641).
- CVE-2024-27399: Bluetooth: l2cap: fix null-ptr-deref in l2cap_chan_timeout (bsc#1224177).
- CVE-2024-27410: Reject iftype change with mesh ID change (bsc#1224432).
- CVE-2024-35247: fpga: region: add owner module and take its refcount (bsc#1226948).
- CVE-2024-35807: ext4: fix corruption during on-line resize (bsc#1224735).
- CVE-2024-35822: usb: udc: remove warning when queue disabled ep (bsc#1224739).
- CVE-2024-35835: net/mlx5e: fix a double-free in arfs_create_groups (bsc#1224605).
- CVE-2024-35862: Fixed potential UAF in smb2_is_network_name_deleted() (bsc#1224764).
- CVE-2024-35863: Fixed potential UAF in is_valid_oplock_break() (bsc#1224763).
- CVE-2024-35864: Fixed potential UAF in smb2_is_valid_lease_break() (bsc#1224765).
- CVE-2024-35865: Fixed potential UAF in smb2_is_valid_oplock_break() (bsc#1224668).
- CVE-2024-35867: Fixed potential UAF in cifs_stats_proc_show() (bsc#1224664).
- CVE-2024-35868: Fixed potential UAF in cifs_stats_proc_write() (bsc#1224678).
- CVE-2024-35870: Fixed UAF in smb2_reconnect_server() (bsc#1224672).
- CVE-2024-35886: ipv6: Fix infinite recursion in fib6_dump_done() (bsc#1224670).
- CVE-2024-35922: fbmon: prevent division by zero in fb_videomode_from_videomode() (bsc#1224660)
- CVE-2024-35925: block: prevent division by zero in blk_rq_stat_sum() (bsc#1224661).
- CVE-2024-35930: scsi: lpfc: Fix possible memory leak in lpfc_rcv_padisc() (bsc#1224651).
- CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1224703).
- CVE-2024-35956: Fixed qgroup prealloc rsv leak in subvolume operations (bsc#1224674)
- CVE-2024-35958: net: ena: Fix incorrect descriptor free behavior (bsc#1224677).
- CVE-2024-35960: net/mlx5: Properly link new fs rules into the tree (bsc#1224588).
- CVE-2024-35976: Validate user input for XDP_{UMEM|COMPLETION}_FILL_RING (bsc#1224575).
- CVE-2024-35979: raid1: fix use-after-free for original bio in raid1_write_request() (bsc#1224572).
- CVE-2024-35997: Remove I2C_HID_READ_PENDING flag to prevent lock-up (bsc#1224552).
- CVE-2024-35998: Fixed lock ordering potential deadlock in cifs_sync_mid_result (bsc#1224549).
- CVE-2024-36016: tty: n_gsm: fix possible out-of-bounds in gsm0_receive() (bsc#1225642).
- CVE-2024-36017: rtnetlink: Correct nested IFLA_VF_VLAN_LIST attribute validation (bsc#1225681).
- CVE-2024-36479: fpga: bridge: add owner module and take its refcount (bsc#1226949).
- CVE-2024-36592: scsi: lpfc: Move NPIV's transport unregistration to after resource clean up (bsc#1225898).
- CVE-2024-36880: Bluetooth: qca: add missing firmware sanity checks (bsc#1225722).
- CVE-2024-36894: usb: gadget: f_fs: Fix race between aio_cancel() and AIO request complete (bsc#1225749).
- CVE-2024-36915: nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies (bsc#1225758).
- CVE-2024-36917: block: fix overflow in blk_ioctl_discard() (bsc#1225770).
- CVE-2024-36919: scsi: bnx2fc: Remove spin_lock_bh while releasing resources after upload (bsc#1225767).
- CVE-2024-36923: fs/9p: fix uninitialized values during inode evict (bsc#1225815).
- CVE-2024-36934: bna: ensure the copied buf is NUL terminated (bsc#1225760).
- CVE-2024-36938: Fixed NULL pointer dereference in sk_psock_skb_ingress_enqueue (bsc#1225761).
- CVE-2024-36940: pinctrl: core: delete incorrect free in pinctrl_enable() (bsc#1225840).
- CVE-2024-36949: amd/amdkfd: sync all devices to wait all processes being evicted (bsc#1225872)
- CVE-2024-36950: firewire: ohci: mask bus reset interrupts between ISR and bottom half (bsc#1225895).
- CVE-2024-36960: drm/vmwgfx: Fix invalid reads in fence signaled events (bsc#1225872)
- CVE-2024-36964: fs/9p: only translate RWX permissions for plain 9P2000 (bsc#1225866).
- CVE-2024-37021: fpga: manager: add owner module and take its refcount (bsc#1226950).
- CVE-2024-37354: btrfs: fix crash on racing fsync and size-extending write into prealloc (bsc#1227101).
- CVE-2024-38544: RDMA/rxe: Fix seg fault in rxe_comp_queue_pkt (bsc#1226597)
- CVE-2024-38545: RDMA/hns: Fix UAF for cq async event (bsc#1226595).
- CVE-2024-38546: drm: vc4: Fix possible null pointer dereference (bsc#1226593).
- CVE-2024-38549: drm/mediatek: Add 0 size check to mtk_drm_gem_obj (bsc#1226735)
- CVE-2024-38552: drm/amd/display: Fix potential index out of bounds in color (bsc#1226767)
- CVE-2024-38553: net: fec: remove .ndo_poll_controller to avoid deadlock (bsc#1226744).
- CVE-2024-38565: wifi: ar5523: enable proper endpoint verification (bsc#1226747).
- CVE-2024-38567: wifi: carl9170: add a proper sanity check for endpoints (bsc#1226769).
- CVE-2024-38578: ecryptfs: Fix buffer size for tag 66 packet (bsc#1226634.
- CVE-2024-38579: crypto: bcm - Fix pointer arithmetic (bsc#1226637).
- CVE-2024-38580: epoll: be better about file lifetimes (bsc#1226610).
- CVE-2024-38597: eth: sungem: remove .ndo_poll_controller to avoid deadlocks (bsc#1226749).
- CVE-2024-38608: net/mlx5e: Fix netif state handling (bsc#1226746).
- CVE-2024-38618: ALSA: timer: Set lower bound of start tick time (bsc#1226754).
- CVE-2024-38621: media: stk1160: fix bounds checking in stk1160_copy_video() (bsc#1226895).
- CVE-2024-38627: stm class: Fix a double free in stm_register_device() (bsc#1226857).
- CVE-2024-38659: enic: Validate length of nl attributes in enic_set_vf_port (bsc#1226883).
- CVE-2024-38661: s390/ap: Fix crash in AP internal function modify_bitmap() (bsc#1226996).
- CVE-2024-38780: dma-buf/sw-sync: do not enable IRQ from sync_print_obj() (bsc#1226886).
The following non-security bugs were fixed:
- Btrfs: bail out on error during replay_dir_deletes (git-fixes)
- Btrfs: clean up resources during umount after trans is aborted (git-fixes)
- Btrfs: fix NULL pointer dereference in log_dir_items (git-fixes)
- Btrfs: fix memory and mount leak in btrfs_ioctl_rm_dev_v2() (git-fixes)
- Btrfs: fix unexpected EEXIST from btrfs_get_extent (git-fixes)
- Btrfs: send, fix issuing write op when processing hole in no data mode (git-fixes)
- Fix compilation
- KVM: allow KVM_BUG/KVM_BUG_ON to handle 64-bit cond (git-fixes).
- NFSv4: Always clear the pNFS layout when handling ESTALE (bsc#1221791).
- NFSv4: nfs_set_open_stateid must not trigger state recovery for closed state (bsc#1221791).
- PNFS for stateid errors retry against MDS first (bsc#1221791).
- RDMA/mlx5: Add check for srq max_sge attribute (git-fixes)
- USB: serial: option: add Foxconn T99W265 with new baseline (git-fixes).
- USB: serial: option: add Quectel EG912Y module support (git-fixes).
- USB: serial: option: add Quectel RM500Q R13 firmware support (git-fixes).
- arm64: asm-bug: Add .align 2 to the end of __BUG_ENTRY (git-fixes).
- blk-cgroup: Fix NULL deref caused by blkg_policy_data being installed before init (bsc#1216062 bsc#1225203).
- blk-cgroup: fix missing pd_online_fn() while activating policy (git-fixes bsc#1225203).
- blk-cgroup: support to track if policy is online (bsc#1216062 bsc#1225203).
- bpf, scripts: Correct GPL license name (git-fixes).
- bsc#1225894: Fix build warning
- btrfs: add barriers to btrfs_sync_log before log_commit_wait wakeups (git-fixes)
- btrfs: fix crash when trying to resume balance without the resume flag (git-fixes)
- btrfs: fix describe_relocation when printing unknown flags (git-fixes)
- btrfs: fix false EIO for missing device (git-fixes)
- btrfs: tree-check: reduce stack consumption in check_dir_item (git-fixes)
- btrfs: use correct compare function of dirty_metadata_bytes (git-fixes)
- drm/amdkfd: Rework kfd_locked handling (bsc#1225872)
- fix compat handling of FICLONERANGE, FIDEDUPERANGE and FS_IOC_FIEMAP (bsc#1225848).
- fs: make fiemap work from compat_ioctl (bsc#1225848).
- iommu/amd: Fix sysfs leak in iommu init (git-fixes).
- iommu/vt-d: Allocate local memory for page request queue (git-fixes).
- ipvs: Fix checksumming on GSO of SCTP packets (bsc#1221958)
- kabi: blkcg_policy_data fix KABI (bsc#1216062 bsc#1225203).
- mkspec-dtb: add toplevel symlinks also on arm
- net: hsr: fix placement of logical operator in a multi-line statement (bsc#1223021).
- net: usb: rtl8150 fix unintiatilzed variables in rtl8150_get_link_ksettings (git-fixes).
- net: usb: smsc95xx: fix changing LED_SEL bit value updated from EEPROM (git-fixes).
- nfsd: optimise recalculate_deny_mode() for a common case (bsc#1217912).
- nvmet: fix ns enable/disable possible hang (git-fixes).
- ocfs2: adjust enabling place for la window (bsc#1219224).
- ocfs2: fix sparse warnings (bsc#1219224).
- ocfs2: improve write IO performance when fragmentation is high (bsc#1219224).
- ocfs2: speed up chain-list searching (bsc#1219224).
- rpm/kernel-obs-build.spec.in: Add iso9660 (bsc#1226212) Some builds do not just create an iso9660 image, but also mount it during build.
- rpm/kernel-obs-build.spec.in: Add networking modules for docker (bsc#1226211) docker needs more networking modules, even legacy iptable_nat and _filter.
- rpm/kernel-obs-build.spec.in: Include algif_hash, aegis128 and xts modules afgif_hash is needed by some packages (e.g. iwd) for tests, xts is used for LUKS2 volumes by default and aegis128 is useful as AEAD cipher for LUKS2. Wrap the long line to make it readable.
- rpm/mkspec-dtb: dtbs have moved to vendor sub-directories in 6.5 By commit 724ba6751532 ('ARM: dts: Move .dts files to vendor sub-directories'). So switch to them.
- scsi: 3w-xxxx: Add error handling for initialization failure in tw_probe() (git-fixes).
- scsi: 53c700: Check that command slot is not NULL (git-fixes).
- scsi: be2iscsi: Add length check when parsing nlattrs (git-fixes).
- scsi: be2iscsi: Fix a memleak in beiscsi_init_wrb_handle() (git-fixes).
- scsi: bfa: Fix function pointer type mismatch for hcb_qe->cbfn (git-fixes).
- scsi: bnx2fc: Fix skb double free in bnx2fc_rcv() (git-fixes).
- scsi: core: Decrease scsi_device's iorequest_cnt if dispatch failed (git-fixes).
- scsi: core: Fix legacy /proc parsing buffer overflow (git-fixes).
- scsi: core: Fix possible memory leak if device_add() fails (git-fixes).
- scsi: csiostor: Avoid function pointer casts (git-fixes).
- scsi: isci: Fix an error code problem in isci_io_request_build() (git-fixes).
- scsi: iscsi: Add length check for nlattr payload (git-fixes).
- scsi: iscsi: Add strlen() check in iscsi_if_set{_host}_param() (git-fixes).
- scsi: iscsi_tcp: restrict to TCP sockets (git-fixes).
- scsi: libfc: Fix potential NULL pointer dereference in fc_lport_ptp_setup() (git-fixes).
- scsi: libsas: Add a helper sas_get_sas_addr_and_dev_type() (git-fixes).
- scsi: libsas: Fix disk not being scanned in after being removed (git-fixes).
- scsi: libsas: Introduce struct smp_disc_resp (git-fixes).
- scsi: lpfc: Correct size for wqe for memset() (git-fixes).
- scsi: lpfc: Fix double free in lpfc_cmpl_els_logo_acc() caused by lpfc_nlp_not_used() (git-fixes).
- scsi: lpfc: Fix the NULL vs IS_ERR() bug for debugfs_create_file() (git-fixes).
- scsi: megaraid_sas: Increase register read retry rount from 3 to 30 for selected registers (git-fixes).
- scsi: mpt3sas: Fix in error path (git-fixes).
- scsi: mpt3sas: Fix loop logic (git-fixes).
- scsi: mpt3sas: Perform additional retries if doorbell read returns 0 (git-fixes).
- scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read() directly (git-fixes).
- scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read() directly (git-fixes).
- scsi: qedf: Do not touch __user pointer in qedf_dbg_stop_io_on_error_cmd_read() directly (git-fixes).
- scsi: qedf: Fix NULL dereference in error handling (git-fixes).
- scsi: qedf: Fix firmware halt over suspend and resume (git-fixes).
- scsi: qedi: Fix firmware halt over suspend and resume (git-fixes).
- scsi: qedi: Fix potential deadlock on &qedi_percpu->p_work_lock (git-fixes).
- scsi: qla2xxx: Fix off by one in qla_edif_app_getstats() (git-fixes).
- scsi: qla4xxx: Add length check when parsing nlattrs (git-fixes).
- scsi: snic: Fix double free in snic_tgt_create() (git-fixes).
- scsi: snic: Fix possible memory leak if device_add() fails (git-fixes).
- scsi: stex: Fix gcc 13 warnings (git-fixes).
- scsi: target: core: Add TMF to tmr_list handling (bsc#1223018).
- usb: port: Do not try to peer unused USB ports based on location (git-fixes).
- usb: typec: tcpm: Skip hard reset when in error recovery (git-fixes).
- x86/tsc: Trust initial offset in architectural TSC-adjust MSRs (bsc#1222015 bsc#1226962).
Patchnames
SUSE-2024-2360,SUSE-SLE-SERVER-12-SP5-2024-2360
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe SUSE Linux Enterprise 12 SP5 Azure kernel was updated to receive various security bugfixes.\n\n\nThe following security bugs were fixed:\n\n- CVE-2021-47103: net: sock: preserve kabi for sock (bsc#1221010).\n- CVE-2021-47191: Fix out-of-bound read in resp_readcap16() (bsc#1222866).\n- CVE-2021-47267: usb: fix various gadget panics on 10gbps cabling (bsc#1224993).\n- CVE-2021-47270: usb: fix various gadgets null ptr deref on 10gbps cabling (bsc#1224997).\n- CVE-2021-47293: net/sched: act_skbmod: Skip non-Ethernet packets (bsc#1224978).\n- CVE-2021-47294: netrom: Decrease sock refcount when sock timers expire (bsc#1224977).\n- CVE-2021-47297: net: fix uninit-value in caif_seqpkt_sendmsg (bsc#1224976).\n- CVE-2021-47309: net: validate lwtstate-\u003edata before returning from skb_tunnel_info() (bsc#1224967).\n- CVE-2021-47354: drm/sched: Avoid data corruptions (bsc#1225140)\n- CVE-2021-47372: net: macb: fix use after free on rmmod (bsc#1225184).\n- CVE-2021-47379: blk-cgroup: fix UAF by grabbing blkcg lock before destroying blkg pd (bsc#1225203).\n- CVE-2021-47407: KVM: x86: Handle SRCU initialization failure during page track init (bsc#1225306).\n- CVE-2021-47418: net_sched: fix NULL deref in fifo_set_limit() (bsc#1225337).\n- CVE-2021-47434: xhci: Fix commad ring abort, write all 64 bits to CRCR register (bsc#1225232).\n- CVE-2021-47445: drm/msm: Fix null pointer dereference on pointer edp (bsc#1225261)\n- CVE-2021-47518: nfc: fix potential NULL pointer deref in nfc_genl_dump_ses_done (bsc#1225372).\n- CVE-2021-47544: tcp: fix page frag corruption on page fault (bsc#1225463).\n- CVE-2021-47566: Fix clearing user buffer by properly using clear_user() (bsc#1225514).\n- CVE-2021-47571: staging: rtl8192e: Fix use after free in _rtl92e_pci_disconnect() (bsc#1225518).\n- CVE-2021-47587: net: systemport: Add global locking for descriptor lifecycle (bsc#1226567).\n- CVE-2021-47602: mac80211: track only QoS data frames for admission control (bsc#1226554).\n- CVE-2021-47609: firmware: arm_scpi: Fix string overflow in SCPI genpd driver (bsc#1226562)\n- CVE-2022-48732: drm/nouveau: fix off by one in BIOS boundary checking (bsc#1226716)\n- CVE-2022-48733: btrfs: fix use-after-free after failure to create a snapshot (bsc#1226718).\n- CVE-2022-48740: selinux: fix double free of cond_list on error paths (bsc#1226699).\n- CVE-2022-48743: net: amd-xgbe: Fix skb data length underflow (bsc#1226705).\n- CVE-2022-48756: drm/msm/dsi: invalid parameter check in msm_dsi_phy_enable (bsc#1226698)\n- CVE-2022-48759: rpmsg: char: Fix race between the release of rpmsg_ctrldev and cdev (bsc#1226711).\n- CVE-2022-48761: usb: xhci-plat: fix crash when suspend if remote wake enable (bsc#1226701).\n- CVE-2022-48772: media: lgdt3306a: Add a check against null-pointer-def (bsc#1226976).\n- CVE-2023-52622: ext4: avoid online resizing failures due to oversized flex bg (bsc#1222080).\n- CVE-2023-52675: powerpc/imc-pmu: Add a null pointer check in update_events_in_group() (bsc#1224504).\n- CVE-2023-52737: btrfs: lock the inode in shared mode before starting fiemap (bsc#1225484).\n- CVE-2023-52752: smb: client: fix use-after-free bug in cifs_debug_data_proc_show() (bsc#1225487).\n- CVE-2023-52754: media: imon: fix access to invalid resource for the second interface (bsc#1225490).\n- CVE-2023-52757: Fixed potential deadlock when releasing mids (bsc#1225548).\n- CVE-2023-52762: virtio-blk: fix implicit overflow on virtio_max_dma_size (bsc#1225573).\n- CVE-2023-52764: media: gspca: cpia1: shift-out-of-bounds in set_flicker (bsc#1225571).\n- CVE-2023-52784: bonding: stop the device in bond_setup_by_slave() (bsc#1224946).\n- CVE-2023-52832: wifi: mac80211: do not return unset power in ieee80211_get_tx_power() (bsc#1225577).\n- CVE-2023-52834: atl1c: Work around the DMA RX overflow issue (bsc#1225599).\n- CVE-2023-52835: perf/core: Bail out early if the request AUX area is out of bound (bsc#1225602).\n- CVE-2023-52843: llc: verify mac len before reading mac header (bsc#1224951).\n- CVE-2023-52845: tipc: Change nla_policy for bearer-related names to NLA_NUL_STRING (bsc#1225585).\n- CVE-2023-52855: usb: dwc2: fix possible NULL pointer dereference caused by driver concurrency (bsc#1225583).\n- CVE-2023-52881: tcp: do not accept ACK of bytes we never sent (bsc#1225611).\n- CVE-2024-26633: ip6_tunnel: fix NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tlv_enc_lim() (bsc#1221647).\n- CVE-2024-26641: ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv() (bsc#1221654).\n- CVE-2024-26679: Fixed read sk-\u003esk_family once in inet_recv_error() (bsc#1222385).\n- CVE-2024-26687: Fixed xen/events close evtchn after mapping cleanup (bsc#1222435).\n- CVE-2024-26720: mm: Avoid overflows in dirty throttling logic (bsc#1222364).\n- CVE-2024-26813: vfio/platform: Create persistent IRQ handlers (bsc#1222809).\n- CVE-2024-26863: hsr: Fix uninit-value access in hsr_get_node() (bsc#1223021).\n- CVE-2024-26894: ACPI: processor_idle: Fix memory leak in acpi_processor_power_exit() (bsc#1223043).\n- CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223384).\n- CVE-2024-26928: Fixed potential UAF in cifs_debug_files_proc_show() (bsc#1223532).\n- CVE-2024-26973: fat: fix uninitialized field in nostale filehandles (git-fixesbsc#1223641).\n- CVE-2024-27399: Bluetooth: l2cap: fix null-ptr-deref in l2cap_chan_timeout (bsc#1224177).\n- CVE-2024-27410: Reject iftype change with mesh ID change (bsc#1224432).\n- CVE-2024-35247: fpga: region: add owner module and take its refcount (bsc#1226948).\n- CVE-2024-35807: ext4: fix corruption during on-line resize (bsc#1224735).\n- CVE-2024-35822: usb: udc: remove warning when queue disabled ep (bsc#1224739).\n- CVE-2024-35835: net/mlx5e: fix a double-free in arfs_create_groups (bsc#1224605).\n- CVE-2024-35862: Fixed potential UAF in smb2_is_network_name_deleted() (bsc#1224764).\n- CVE-2024-35863: Fixed potential UAF in is_valid_oplock_break() (bsc#1224763).\n- CVE-2024-35864: Fixed potential UAF in smb2_is_valid_lease_break() (bsc#1224765).\n- CVE-2024-35865: Fixed potential UAF in smb2_is_valid_oplock_break() (bsc#1224668).\n- CVE-2024-35867: Fixed potential UAF in cifs_stats_proc_show() (bsc#1224664).\n- CVE-2024-35868: Fixed potential UAF in cifs_stats_proc_write() (bsc#1224678).\n- CVE-2024-35870: Fixed UAF in smb2_reconnect_server() (bsc#1224672).\n- CVE-2024-35886: ipv6: Fix infinite recursion in fib6_dump_done() (bsc#1224670).\n- CVE-2024-35922: fbmon: prevent division by zero in fb_videomode_from_videomode() (bsc#1224660)\n- CVE-2024-35925: block: prevent division by zero in blk_rq_stat_sum() (bsc#1224661).\n- CVE-2024-35930: scsi: lpfc: Fix possible memory leak in lpfc_rcv_padisc() (bsc#1224651).\n- CVE-2024-35950: drm/client: Fully protect modes with dev-\u003emode_config.mutex (bsc#1224703).\n- CVE-2024-35956: Fixed qgroup prealloc rsv leak in subvolume operations (bsc#1224674)\n- CVE-2024-35958: net: ena: Fix incorrect descriptor free behavior (bsc#1224677).\n- CVE-2024-35960: net/mlx5: Properly link new fs rules into the tree (bsc#1224588).\n- CVE-2024-35976: Validate user input for XDP_{UMEM|COMPLETION}_FILL_RING (bsc#1224575).\n- CVE-2024-35979: raid1: fix use-after-free for original bio in raid1_write_request() (bsc#1224572).\n- CVE-2024-35997: Remove I2C_HID_READ_PENDING flag to prevent lock-up (bsc#1224552).\n- CVE-2024-35998: Fixed lock ordering potential deadlock in cifs_sync_mid_result (bsc#1224549).\n- CVE-2024-36016: tty: n_gsm: fix possible out-of-bounds in gsm0_receive() (bsc#1225642).\n- CVE-2024-36017: rtnetlink: Correct nested IFLA_VF_VLAN_LIST attribute validation (bsc#1225681).\n- CVE-2024-36479: fpga: bridge: add owner module and take its refcount (bsc#1226949).\n- CVE-2024-36592: scsi: lpfc: Move NPIV\u0027s transport unregistration to after resource clean up (bsc#1225898).\n- CVE-2024-36880: Bluetooth: qca: add missing firmware sanity checks (bsc#1225722).\n- CVE-2024-36894: usb: gadget: f_fs: Fix race between aio_cancel() and AIO request complete (bsc#1225749).\n- CVE-2024-36915: nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies (bsc#1225758).\n- CVE-2024-36917: block: fix overflow in blk_ioctl_discard() (bsc#1225770).\n- CVE-2024-36919: scsi: bnx2fc: Remove spin_lock_bh while releasing resources after upload (bsc#1225767).\n- CVE-2024-36923: fs/9p: fix uninitialized values during inode evict (bsc#1225815).\n- CVE-2024-36934: bna: ensure the copied buf is NUL terminated (bsc#1225760).\n- CVE-2024-36938: Fixed NULL pointer dereference in sk_psock_skb_ingress_enqueue (bsc#1225761).\n- CVE-2024-36940: pinctrl: core: delete incorrect free in pinctrl_enable() (bsc#1225840).\n- CVE-2024-36949: amd/amdkfd: sync all devices to wait all processes being evicted (bsc#1225872)\n- CVE-2024-36950: firewire: ohci: mask bus reset interrupts between ISR and bottom half (bsc#1225895).\n- CVE-2024-36960: drm/vmwgfx: Fix invalid reads in fence signaled events (bsc#1225872)\n- CVE-2024-36964: fs/9p: only translate RWX permissions for plain 9P2000 (bsc#1225866).\n- CVE-2024-37021: fpga: manager: add owner module and take its refcount (bsc#1226950).\n- CVE-2024-37354: btrfs: fix crash on racing fsync and size-extending write into prealloc (bsc#1227101).\n- CVE-2024-38544: RDMA/rxe: Fix seg fault in rxe_comp_queue_pkt (bsc#1226597)\n- CVE-2024-38545: RDMA/hns: Fix UAF for cq async event (bsc#1226595).\n- CVE-2024-38546: drm: vc4: Fix possible null pointer dereference (bsc#1226593).\n- CVE-2024-38549: drm/mediatek: Add 0 size check to mtk_drm_gem_obj (bsc#1226735)\n- CVE-2024-38552: drm/amd/display: Fix potential index out of bounds in color (bsc#1226767)\n- CVE-2024-38553: net: fec: remove .ndo_poll_controller to avoid deadlock (bsc#1226744).\n- CVE-2024-38565: wifi: ar5523: enable proper endpoint verification (bsc#1226747).\n- CVE-2024-38567: wifi: carl9170: add a proper sanity check for endpoints (bsc#1226769).\n- CVE-2024-38578: ecryptfs: Fix buffer size for tag 66 packet (bsc#1226634.\n- CVE-2024-38579: crypto: bcm - Fix pointer arithmetic (bsc#1226637).\n- CVE-2024-38580: epoll: be better about file lifetimes (bsc#1226610).\n- CVE-2024-38597: eth: sungem: remove .ndo_poll_controller to avoid deadlocks (bsc#1226749).\n- CVE-2024-38608: net/mlx5e: Fix netif state handling (bsc#1226746).\n- CVE-2024-38618: ALSA: timer: Set lower bound of start tick time (bsc#1226754).\n- CVE-2024-38621: media: stk1160: fix bounds checking in stk1160_copy_video() (bsc#1226895).\n- CVE-2024-38627: stm class: Fix a double free in stm_register_device() (bsc#1226857).\n- CVE-2024-38659: enic: Validate length of nl attributes in enic_set_vf_port (bsc#1226883).\n- CVE-2024-38661: s390/ap: Fix crash in AP internal function modify_bitmap() (bsc#1226996).\n- CVE-2024-38780: dma-buf/sw-sync: do not enable IRQ from sync_print_obj() (bsc#1226886).\n\nThe following non-security bugs were fixed:\n\n- Btrfs: bail out on error during replay_dir_deletes (git-fixes)\n- Btrfs: clean up resources during umount after trans is aborted (git-fixes)\n- Btrfs: fix NULL pointer dereference in log_dir_items (git-fixes)\n- Btrfs: fix memory and mount leak in btrfs_ioctl_rm_dev_v2() (git-fixes)\n- Btrfs: fix unexpected EEXIST from btrfs_get_extent (git-fixes)\n- Btrfs: send, fix issuing write op when processing hole in no data mode (git-fixes)\n- Fix compilation\n- KVM: allow KVM_BUG/KVM_BUG_ON to handle 64-bit cond (git-fixes).\n- NFSv4: Always clear the pNFS layout when handling ESTALE (bsc#1221791).\n- NFSv4: nfs_set_open_stateid must not trigger state recovery for closed state (bsc#1221791).\n- PNFS for stateid errors retry against MDS first (bsc#1221791).\n- RDMA/mlx5: Add check for srq max_sge attribute (git-fixes)\n- USB: serial: option: add Foxconn T99W265 with new baseline (git-fixes).\n- USB: serial: option: add Quectel EG912Y module support (git-fixes).\n- USB: serial: option: add Quectel RM500Q R13 firmware support (git-fixes).\n- arm64: asm-bug: Add .align 2 to the end of __BUG_ENTRY (git-fixes).\n- blk-cgroup: Fix NULL deref caused by blkg_policy_data being installed before init (bsc#1216062 bsc#1225203).\n- blk-cgroup: fix missing pd_online_fn() while activating policy (git-fixes bsc#1225203).\n- blk-cgroup: support to track if policy is online (bsc#1216062 bsc#1225203).\n- bpf, scripts: Correct GPL license name (git-fixes).\n- bsc#1225894: Fix build warning\n- btrfs: add barriers to btrfs_sync_log before log_commit_wait wakeups (git-fixes)\n- btrfs: fix crash when trying to resume balance without the resume flag (git-fixes)\n- btrfs: fix describe_relocation when printing unknown flags (git-fixes)\n- btrfs: fix false EIO for missing device (git-fixes)\n- btrfs: tree-check: reduce stack consumption in check_dir_item (git-fixes)\n- btrfs: use correct compare function of dirty_metadata_bytes (git-fixes)\n- drm/amdkfd: Rework kfd_locked handling (bsc#1225872)\n- fix compat handling of FICLONERANGE, FIDEDUPERANGE and FS_IOC_FIEMAP (bsc#1225848).\n- fs: make fiemap work from compat_ioctl (bsc#1225848).\n- iommu/amd: Fix sysfs leak in iommu init (git-fixes).\n- iommu/vt-d: Allocate local memory for page request queue (git-fixes).\n- ipvs: Fix checksumming on GSO of SCTP packets (bsc#1221958)\n- kabi: blkcg_policy_data fix KABI (bsc#1216062 bsc#1225203).\n- mkspec-dtb: add toplevel symlinks also on arm\n- net: hsr: fix placement of logical operator in a multi-line statement (bsc#1223021).\n- net: usb: rtl8150 fix unintiatilzed variables in rtl8150_get_link_ksettings (git-fixes).\n- net: usb: smsc95xx: fix changing LED_SEL bit value updated from EEPROM (git-fixes).\n- nfsd: optimise recalculate_deny_mode() for a common case (bsc#1217912).\n- nvmet: fix ns enable/disable possible hang (git-fixes).\n- ocfs2: adjust enabling place for la window (bsc#1219224).\n- ocfs2: fix sparse warnings (bsc#1219224).\n- ocfs2: improve write IO performance when fragmentation is high (bsc#1219224).\n- ocfs2: speed up chain-list searching (bsc#1219224).\n- rpm/kernel-obs-build.spec.in: Add iso9660 (bsc#1226212) Some builds do not just create an iso9660 image, but also mount it during build.\n- rpm/kernel-obs-build.spec.in: Add networking modules for docker (bsc#1226211) docker needs more networking modules, even legacy iptable_nat and _filter.\n- rpm/kernel-obs-build.spec.in: Include algif_hash, aegis128 and xts modules afgif_hash is needed by some packages (e.g. iwd) for tests, xts is used for LUKS2 volumes by default and aegis128 is useful as AEAD cipher for LUKS2. Wrap the long line to make it readable.\n- rpm/mkspec-dtb: dtbs have moved to vendor sub-directories in 6.5 By commit 724ba6751532 (\u0027ARM: dts: Move .dts files to vendor sub-directories\u0027). So switch to them.\n- scsi: 3w-xxxx: Add error handling for initialization failure in tw_probe() (git-fixes).\n- scsi: 53c700: Check that command slot is not NULL (git-fixes).\n- scsi: be2iscsi: Add length check when parsing nlattrs (git-fixes).\n- scsi: be2iscsi: Fix a memleak in beiscsi_init_wrb_handle() (git-fixes).\n- scsi: bfa: Fix function pointer type mismatch for hcb_qe-\u003ecbfn (git-fixes).\n- scsi: bnx2fc: Fix skb double free in bnx2fc_rcv() (git-fixes).\n- scsi: core: Decrease scsi_device\u0027s iorequest_cnt if dispatch failed (git-fixes).\n- scsi: core: Fix legacy /proc parsing buffer overflow (git-fixes).\n- scsi: core: Fix possible memory leak if device_add() fails (git-fixes).\n- scsi: csiostor: Avoid function pointer casts (git-fixes).\n- scsi: isci: Fix an error code problem in isci_io_request_build() (git-fixes).\n- scsi: iscsi: Add length check for nlattr payload (git-fixes).\n- scsi: iscsi: Add strlen() check in iscsi_if_set{_host}_param() (git-fixes).\n- scsi: iscsi_tcp: restrict to TCP sockets (git-fixes).\n- scsi: libfc: Fix potential NULL pointer dereference in fc_lport_ptp_setup() (git-fixes).\n- scsi: libsas: Add a helper sas_get_sas_addr_and_dev_type() (git-fixes).\n- scsi: libsas: Fix disk not being scanned in after being removed (git-fixes).\n- scsi: libsas: Introduce struct smp_disc_resp (git-fixes).\n- scsi: lpfc: Correct size for wqe for memset() (git-fixes).\n- scsi: lpfc: Fix double free in lpfc_cmpl_els_logo_acc() caused by lpfc_nlp_not_used() (git-fixes).\n- scsi: lpfc: Fix the NULL vs IS_ERR() bug for debugfs_create_file() (git-fixes).\n- scsi: megaraid_sas: Increase register read retry rount from 3 to 30 for selected registers (git-fixes).\n- scsi: mpt3sas: Fix in error path (git-fixes).\n- scsi: mpt3sas: Fix loop logic (git-fixes).\n- scsi: mpt3sas: Perform additional retries if doorbell read returns 0 (git-fixes).\n- scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read() directly (git-fixes).\n- scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read() directly (git-fixes).\n- scsi: qedf: Do not touch __user pointer in qedf_dbg_stop_io_on_error_cmd_read() directly (git-fixes).\n- scsi: qedf: Fix NULL dereference in error handling (git-fixes).\n- scsi: qedf: Fix firmware halt over suspend and resume (git-fixes).\n- scsi: qedi: Fix firmware halt over suspend and resume (git-fixes).\n- scsi: qedi: Fix potential deadlock on \u0026qedi_percpu-\u003ep_work_lock (git-fixes).\n- scsi: qla2xxx: Fix off by one in qla_edif_app_getstats() (git-fixes).\n- scsi: qla4xxx: Add length check when parsing nlattrs (git-fixes).\n- scsi: snic: Fix double free in snic_tgt_create() (git-fixes).\n- scsi: snic: Fix possible memory leak if device_add() fails (git-fixes).\n- scsi: stex: Fix gcc 13 warnings (git-fixes).\n- scsi: target: core: Add TMF to tmr_list handling (bsc#1223018).\n- usb: port: Do not try to peer unused USB ports based on location (git-fixes).\n- usb: typec: tcpm: Skip hard reset when in error recovery (git-fixes).\n- x86/tsc: Trust initial offset in architectural TSC-adjust MSRs (bsc#1222015 bsc#1226962).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-2360,SUSE-SLE-SERVER-12-SP5-2024-2360",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_2360-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:2360-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20242360-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:2360-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2024-July/035874.html"
},
{
"category": "self",
"summary": "SUSE Bug 1119113",
"url": "https://bugzilla.suse.com/1119113"
},
{
"category": "self",
"summary": "SUSE Bug 1171988",
"url": "https://bugzilla.suse.com/1171988"
},
{
"category": "self",
"summary": "SUSE Bug 1191958",
"url": "https://bugzilla.suse.com/1191958"
},
{
"category": "self",
"summary": "SUSE Bug 1195065",
"url": "https://bugzilla.suse.com/1195065"
},
{
"category": "self",
"summary": "SUSE Bug 1195254",
"url": "https://bugzilla.suse.com/1195254"
},
{
"category": "self",
"summary": "SUSE Bug 1195775",
"url": "https://bugzilla.suse.com/1195775"
},
{
"category": "self",
"summary": "SUSE Bug 1204514",
"url": "https://bugzilla.suse.com/1204514"
},
{
"category": "self",
"summary": "SUSE Bug 1216062",
"url": "https://bugzilla.suse.com/1216062"
},
{
"category": "self",
"summary": "SUSE Bug 1217912",
"url": "https://bugzilla.suse.com/1217912"
},
{
"category": "self",
"summary": "SUSE Bug 1218148",
"url": "https://bugzilla.suse.com/1218148"
},
{
"category": "self",
"summary": "SUSE Bug 1219224",
"url": "https://bugzilla.suse.com/1219224"
},
{
"category": "self",
"summary": "SUSE Bug 1221010",
"url": "https://bugzilla.suse.com/1221010"
},
{
"category": "self",
"summary": "SUSE Bug 1221647",
"url": "https://bugzilla.suse.com/1221647"
},
{
"category": "self",
"summary": "SUSE Bug 1221654",
"url": "https://bugzilla.suse.com/1221654"
},
{
"category": "self",
"summary": "SUSE Bug 1221791",
"url": "https://bugzilla.suse.com/1221791"
},
{
"category": "self",
"summary": "SUSE Bug 1221958",
"url": "https://bugzilla.suse.com/1221958"
},
{
"category": "self",
"summary": "SUSE Bug 1222015",
"url": "https://bugzilla.suse.com/1222015"
},
{
"category": "self",
"summary": "SUSE Bug 1222080",
"url": "https://bugzilla.suse.com/1222080"
},
{
"category": "self",
"summary": "SUSE Bug 1222364",
"url": "https://bugzilla.suse.com/1222364"
},
{
"category": "self",
"summary": "SUSE Bug 1222385",
"url": "https://bugzilla.suse.com/1222385"
},
{
"category": "self",
"summary": "SUSE Bug 1222435",
"url": "https://bugzilla.suse.com/1222435"
},
{
"category": "self",
"summary": "SUSE Bug 1222809",
"url": "https://bugzilla.suse.com/1222809"
},
{
"category": "self",
"summary": "SUSE Bug 1222866",
"url": "https://bugzilla.suse.com/1222866"
},
{
"category": "self",
"summary": "SUSE Bug 1222879",
"url": "https://bugzilla.suse.com/1222879"
},
{
"category": "self",
"summary": "SUSE Bug 1222893",
"url": "https://bugzilla.suse.com/1222893"
},
{
"category": "self",
"summary": "SUSE Bug 1223013",
"url": "https://bugzilla.suse.com/1223013"
},
{
"category": "self",
"summary": "SUSE Bug 1223018",
"url": "https://bugzilla.suse.com/1223018"
},
{
"category": "self",
"summary": "SUSE Bug 1223021",
"url": "https://bugzilla.suse.com/1223021"
},
{
"category": "self",
"summary": "SUSE Bug 1223043",
"url": "https://bugzilla.suse.com/1223043"
},
{
"category": "self",
"summary": "SUSE Bug 1223384",
"url": "https://bugzilla.suse.com/1223384"
},
{
"category": "self",
"summary": "SUSE Bug 1223532",
"url": "https://bugzilla.suse.com/1223532"
},
{
"category": "self",
"summary": "SUSE Bug 1223641",
"url": "https://bugzilla.suse.com/1223641"
},
{
"category": "self",
"summary": "SUSE Bug 1224177",
"url": "https://bugzilla.suse.com/1224177"
},
{
"category": "self",
"summary": "SUSE Bug 1224432",
"url": "https://bugzilla.suse.com/1224432"
},
{
"category": "self",
"summary": "SUSE Bug 1224504",
"url": "https://bugzilla.suse.com/1224504"
},
{
"category": "self",
"summary": "SUSE Bug 1224549",
"url": "https://bugzilla.suse.com/1224549"
},
{
"category": "self",
"summary": "SUSE Bug 1224552",
"url": "https://bugzilla.suse.com/1224552"
},
{
"category": "self",
"summary": "SUSE Bug 1224572",
"url": "https://bugzilla.suse.com/1224572"
},
{
"category": "self",
"summary": "SUSE Bug 1224575",
"url": "https://bugzilla.suse.com/1224575"
},
{
"category": "self",
"summary": "SUSE Bug 1224583",
"url": "https://bugzilla.suse.com/1224583"
},
{
"category": "self",
"summary": "SUSE Bug 1224588",
"url": "https://bugzilla.suse.com/1224588"
},
{
"category": "self",
"summary": "SUSE Bug 1224605",
"url": "https://bugzilla.suse.com/1224605"
},
{
"category": "self",
"summary": "SUSE Bug 1224651",
"url": "https://bugzilla.suse.com/1224651"
},
{
"category": "self",
"summary": "SUSE Bug 1224660",
"url": "https://bugzilla.suse.com/1224660"
},
{
"category": "self",
"summary": "SUSE Bug 1224661",
"url": "https://bugzilla.suse.com/1224661"
},
{
"category": "self",
"summary": "SUSE Bug 1224662",
"url": "https://bugzilla.suse.com/1224662"
},
{
"category": "self",
"summary": "SUSE Bug 1224664",
"url": "https://bugzilla.suse.com/1224664"
},
{
"category": "self",
"summary": "SUSE Bug 1224668",
"url": "https://bugzilla.suse.com/1224668"
},
{
"category": "self",
"summary": "SUSE Bug 1224670",
"url": "https://bugzilla.suse.com/1224670"
},
{
"category": "self",
"summary": "SUSE Bug 1224672",
"url": "https://bugzilla.suse.com/1224672"
},
{
"category": "self",
"summary": "SUSE Bug 1224674",
"url": "https://bugzilla.suse.com/1224674"
},
{
"category": "self",
"summary": "SUSE Bug 1224677",
"url": "https://bugzilla.suse.com/1224677"
},
{
"category": "self",
"summary": "SUSE Bug 1224678",
"url": "https://bugzilla.suse.com/1224678"
},
{
"category": "self",
"summary": "SUSE Bug 1224703",
"url": "https://bugzilla.suse.com/1224703"
},
{
"category": "self",
"summary": "SUSE Bug 1224735",
"url": "https://bugzilla.suse.com/1224735"
},
{
"category": "self",
"summary": "SUSE Bug 1224739",
"url": "https://bugzilla.suse.com/1224739"
},
{
"category": "self",
"summary": "SUSE Bug 1224763",
"url": "https://bugzilla.suse.com/1224763"
},
{
"category": "self",
"summary": "SUSE Bug 1224764",
"url": "https://bugzilla.suse.com/1224764"
},
{
"category": "self",
"summary": "SUSE Bug 1224765",
"url": "https://bugzilla.suse.com/1224765"
},
{
"category": "self",
"summary": "SUSE Bug 1224946",
"url": "https://bugzilla.suse.com/1224946"
},
{
"category": "self",
"summary": "SUSE Bug 1224951",
"url": "https://bugzilla.suse.com/1224951"
},
{
"category": "self",
"summary": "SUSE Bug 1224967",
"url": "https://bugzilla.suse.com/1224967"
},
{
"category": "self",
"summary": "SUSE Bug 1224976",
"url": "https://bugzilla.suse.com/1224976"
},
{
"category": "self",
"summary": "SUSE Bug 1224977",
"url": "https://bugzilla.suse.com/1224977"
},
{
"category": "self",
"summary": "SUSE Bug 1224978",
"url": "https://bugzilla.suse.com/1224978"
},
{
"category": "self",
"summary": "SUSE Bug 1224993",
"url": "https://bugzilla.suse.com/1224993"
},
{
"category": "self",
"summary": "SUSE Bug 1224997",
"url": "https://bugzilla.suse.com/1224997"
},
{
"category": "self",
"summary": "SUSE Bug 1225047",
"url": "https://bugzilla.suse.com/1225047"
},
{
"category": "self",
"summary": "SUSE Bug 1225140",
"url": "https://bugzilla.suse.com/1225140"
},
{
"category": "self",
"summary": "SUSE Bug 1225184",
"url": "https://bugzilla.suse.com/1225184"
},
{
"category": "self",
"summary": "SUSE Bug 1225203",
"url": "https://bugzilla.suse.com/1225203"
},
{
"category": "self",
"summary": "SUSE Bug 1225232",
"url": "https://bugzilla.suse.com/1225232"
},
{
"category": "self",
"summary": "SUSE Bug 1225261",
"url": "https://bugzilla.suse.com/1225261"
},
{
"category": "self",
"summary": "SUSE Bug 1225306",
"url": "https://bugzilla.suse.com/1225306"
},
{
"category": "self",
"summary": "SUSE Bug 1225337",
"url": "https://bugzilla.suse.com/1225337"
},
{
"category": "self",
"summary": "SUSE Bug 1225372",
"url": "https://bugzilla.suse.com/1225372"
},
{
"category": "self",
"summary": "SUSE Bug 1225463",
"url": "https://bugzilla.suse.com/1225463"
},
{
"category": "self",
"summary": "SUSE Bug 1225484",
"url": "https://bugzilla.suse.com/1225484"
},
{
"category": "self",
"summary": "SUSE Bug 1225487",
"url": "https://bugzilla.suse.com/1225487"
},
{
"category": "self",
"summary": "SUSE Bug 1225490",
"url": "https://bugzilla.suse.com/1225490"
},
{
"category": "self",
"summary": "SUSE Bug 1225514",
"url": "https://bugzilla.suse.com/1225514"
},
{
"category": "self",
"summary": "SUSE Bug 1225518",
"url": "https://bugzilla.suse.com/1225518"
},
{
"category": "self",
"summary": "SUSE Bug 1225548",
"url": "https://bugzilla.suse.com/1225548"
},
{
"category": "self",
"summary": "SUSE Bug 1225555",
"url": "https://bugzilla.suse.com/1225555"
},
{
"category": "self",
"summary": "SUSE Bug 1225556",
"url": "https://bugzilla.suse.com/1225556"
},
{
"category": "self",
"summary": "SUSE Bug 1225559",
"url": "https://bugzilla.suse.com/1225559"
},
{
"category": "self",
"summary": "SUSE Bug 1225571",
"url": "https://bugzilla.suse.com/1225571"
},
{
"category": "self",
"summary": "SUSE Bug 1225573",
"url": "https://bugzilla.suse.com/1225573"
},
{
"category": "self",
"summary": "SUSE Bug 1225577",
"url": "https://bugzilla.suse.com/1225577"
},
{
"category": "self",
"summary": "SUSE Bug 1225583",
"url": "https://bugzilla.suse.com/1225583"
},
{
"category": "self",
"summary": "SUSE Bug 1225585",
"url": "https://bugzilla.suse.com/1225585"
},
{
"category": "self",
"summary": "SUSE Bug 1225599",
"url": "https://bugzilla.suse.com/1225599"
},
{
"category": "self",
"summary": "SUSE Bug 1225602",
"url": "https://bugzilla.suse.com/1225602"
},
{
"category": "self",
"summary": "SUSE Bug 1225611",
"url": "https://bugzilla.suse.com/1225611"
},
{
"category": "self",
"summary": "SUSE Bug 1225642",
"url": "https://bugzilla.suse.com/1225642"
},
{
"category": "self",
"summary": "SUSE Bug 1225681",
"url": "https://bugzilla.suse.com/1225681"
},
{
"category": "self",
"summary": "SUSE Bug 1225704",
"url": "https://bugzilla.suse.com/1225704"
},
{
"category": "self",
"summary": "SUSE Bug 1225722",
"url": "https://bugzilla.suse.com/1225722"
},
{
"category": "self",
"summary": "SUSE Bug 1225749",
"url": "https://bugzilla.suse.com/1225749"
},
{
"category": "self",
"summary": "SUSE Bug 1225758",
"url": "https://bugzilla.suse.com/1225758"
},
{
"category": "self",
"summary": "SUSE Bug 1225760",
"url": "https://bugzilla.suse.com/1225760"
},
{
"category": "self",
"summary": "SUSE Bug 1225761",
"url": "https://bugzilla.suse.com/1225761"
},
{
"category": "self",
"summary": "SUSE Bug 1225767",
"url": "https://bugzilla.suse.com/1225767"
},
{
"category": "self",
"summary": "SUSE Bug 1225770",
"url": "https://bugzilla.suse.com/1225770"
},
{
"category": "self",
"summary": "SUSE Bug 1225815",
"url": "https://bugzilla.suse.com/1225815"
},
{
"category": "self",
"summary": "SUSE Bug 1225840",
"url": "https://bugzilla.suse.com/1225840"
},
{
"category": "self",
"summary": "SUSE Bug 1225848",
"url": "https://bugzilla.suse.com/1225848"
},
{
"category": "self",
"summary": "SUSE Bug 1225866",
"url": "https://bugzilla.suse.com/1225866"
},
{
"category": "self",
"summary": "SUSE Bug 1225872",
"url": "https://bugzilla.suse.com/1225872"
},
{
"category": "self",
"summary": "SUSE Bug 1225894",
"url": "https://bugzilla.suse.com/1225894"
},
{
"category": "self",
"summary": "SUSE Bug 1225895",
"url": "https://bugzilla.suse.com/1225895"
},
{
"category": "self",
"summary": "SUSE Bug 1225898",
"url": "https://bugzilla.suse.com/1225898"
},
{
"category": "self",
"summary": "SUSE Bug 1226211",
"url": "https://bugzilla.suse.com/1226211"
},
{
"category": "self",
"summary": "SUSE Bug 1226212",
"url": "https://bugzilla.suse.com/1226212"
},
{
"category": "self",
"summary": "SUSE Bug 1226537",
"url": "https://bugzilla.suse.com/1226537"
},
{
"category": "self",
"summary": "SUSE Bug 1226554",
"url": "https://bugzilla.suse.com/1226554"
},
{
"category": "self",
"summary": "SUSE Bug 1226557",
"url": "https://bugzilla.suse.com/1226557"
},
{
"category": "self",
"summary": "SUSE Bug 1226562",
"url": "https://bugzilla.suse.com/1226562"
},
{
"category": "self",
"summary": "SUSE Bug 1226567",
"url": "https://bugzilla.suse.com/1226567"
},
{
"category": "self",
"summary": "SUSE Bug 1226575",
"url": "https://bugzilla.suse.com/1226575"
},
{
"category": "self",
"summary": "SUSE Bug 1226577",
"url": "https://bugzilla.suse.com/1226577"
},
{
"category": "self",
"summary": "SUSE Bug 1226593",
"url": "https://bugzilla.suse.com/1226593"
},
{
"category": "self",
"summary": "SUSE Bug 1226595",
"url": "https://bugzilla.suse.com/1226595"
},
{
"category": "self",
"summary": "SUSE Bug 1226597",
"url": "https://bugzilla.suse.com/1226597"
},
{
"category": "self",
"summary": "SUSE Bug 1226610",
"url": "https://bugzilla.suse.com/1226610"
},
{
"category": "self",
"summary": "SUSE Bug 1226614",
"url": "https://bugzilla.suse.com/1226614"
},
{
"category": "self",
"summary": "SUSE Bug 1226619",
"url": "https://bugzilla.suse.com/1226619"
},
{
"category": "self",
"summary": "SUSE Bug 1226621",
"url": "https://bugzilla.suse.com/1226621"
},
{
"category": "self",
"summary": "SUSE Bug 1226634",
"url": "https://bugzilla.suse.com/1226634"
},
{
"category": "self",
"summary": "SUSE Bug 1226637",
"url": "https://bugzilla.suse.com/1226637"
},
{
"category": "self",
"summary": "SUSE Bug 1226670",
"url": "https://bugzilla.suse.com/1226670"
},
{
"category": "self",
"summary": "SUSE Bug 1226672",
"url": "https://bugzilla.suse.com/1226672"
},
{
"category": "self",
"summary": "SUSE Bug 1226692",
"url": "https://bugzilla.suse.com/1226692"
},
{
"category": "self",
"summary": "SUSE Bug 1226698",
"url": "https://bugzilla.suse.com/1226698"
},
{
"category": "self",
"summary": "SUSE Bug 1226699",
"url": "https://bugzilla.suse.com/1226699"
},
{
"category": "self",
"summary": "SUSE Bug 1226701",
"url": "https://bugzilla.suse.com/1226701"
},
{
"category": "self",
"summary": "SUSE Bug 1226705",
"url": "https://bugzilla.suse.com/1226705"
},
{
"category": "self",
"summary": "SUSE Bug 1226708",
"url": "https://bugzilla.suse.com/1226708"
},
{
"category": "self",
"summary": "SUSE Bug 1226711",
"url": "https://bugzilla.suse.com/1226711"
},
{
"category": "self",
"summary": "SUSE Bug 1226712",
"url": "https://bugzilla.suse.com/1226712"
},
{
"category": "self",
"summary": "SUSE Bug 1226716",
"url": "https://bugzilla.suse.com/1226716"
},
{
"category": "self",
"summary": "SUSE Bug 1226718",
"url": "https://bugzilla.suse.com/1226718"
},
{
"category": "self",
"summary": "SUSE Bug 1226732",
"url": "https://bugzilla.suse.com/1226732"
},
{
"category": "self",
"summary": "SUSE Bug 1226735",
"url": "https://bugzilla.suse.com/1226735"
},
{
"category": "self",
"summary": "SUSE Bug 1226744",
"url": "https://bugzilla.suse.com/1226744"
},
{
"category": "self",
"summary": "SUSE Bug 1226746",
"url": "https://bugzilla.suse.com/1226746"
},
{
"category": "self",
"summary": "SUSE Bug 1226747",
"url": "https://bugzilla.suse.com/1226747"
},
{
"category": "self",
"summary": "SUSE Bug 1226749",
"url": "https://bugzilla.suse.com/1226749"
},
{
"category": "self",
"summary": "SUSE Bug 1226754",
"url": "https://bugzilla.suse.com/1226754"
},
{
"category": "self",
"summary": "SUSE Bug 1226767",
"url": "https://bugzilla.suse.com/1226767"
},
{
"category": "self",
"summary": "SUSE Bug 1226769",
"url": "https://bugzilla.suse.com/1226769"
},
{
"category": "self",
"summary": "SUSE Bug 1226857",
"url": "https://bugzilla.suse.com/1226857"
},
{
"category": "self",
"summary": "SUSE Bug 1226876",
"url": "https://bugzilla.suse.com/1226876"
},
{
"category": "self",
"summary": "SUSE Bug 1226883",
"url": "https://bugzilla.suse.com/1226883"
},
{
"category": "self",
"summary": "SUSE Bug 1226886",
"url": "https://bugzilla.suse.com/1226886"
},
{
"category": "self",
"summary": "SUSE Bug 1226895",
"url": "https://bugzilla.suse.com/1226895"
},
{
"category": "self",
"summary": "SUSE Bug 1226948",
"url": "https://bugzilla.suse.com/1226948"
},
{
"category": "self",
"summary": "SUSE Bug 1226949",
"url": "https://bugzilla.suse.com/1226949"
},
{
"category": "self",
"summary": "SUSE Bug 1226950",
"url": "https://bugzilla.suse.com/1226950"
},
{
"category": "self",
"summary": "SUSE Bug 1226962",
"url": "https://bugzilla.suse.com/1226962"
},
{
"category": "self",
"summary": "SUSE Bug 1226976",
"url": "https://bugzilla.suse.com/1226976"
},
{
"category": "self",
"summary": "SUSE Bug 1226996",
"url": "https://bugzilla.suse.com/1226996"
},
{
"category": "self",
"summary": "SUSE Bug 1227101",
"url": "https://bugzilla.suse.com/1227101"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-10135 page",
"url": "https://www.suse.com/security/cve/CVE-2020-10135/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-43389 page",
"url": "https://www.suse.com/security/cve/CVE-2021-43389/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-4439 page",
"url": "https://www.suse.com/security/cve/CVE-2021-4439/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47103 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47103/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47191 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47191/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47193 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47193/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47267 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47267/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47270 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47270/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47293 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47293/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47294 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47294/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47297 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47297/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47309 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47309/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47328 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47328/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47354 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47354/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47372 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47372/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47379 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47379/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47407 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47407/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47418 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47418/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47434 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47434/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47445 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47445/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47518 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47518/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47544 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47544/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47566 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47566/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47571 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47571/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47576 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47576/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47587 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47587/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47589 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47589/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47600 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47600/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47602 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47602/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47603 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47603/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47609 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47609/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47617 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47617/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0435 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0435/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-22942 page",
"url": "https://www.suse.com/security/cve/CVE-2022-22942/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-48711 page",
"url": "https://www.suse.com/security/cve/CVE-2022-48711/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-48715 page",
"url": "https://www.suse.com/security/cve/CVE-2022-48715/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-48722 page",
"url": "https://www.suse.com/security/cve/CVE-2022-48722/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-48732 page",
"url": "https://www.suse.com/security/cve/CVE-2022-48732/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-48733 page",
"url": "https://www.suse.com/security/cve/CVE-2022-48733/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-48740 page",
"url": "https://www.suse.com/security/cve/CVE-2022-48740/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-48743 page",
"url": "https://www.suse.com/security/cve/CVE-2022-48743/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-48754 page",
"url": "https://www.suse.com/security/cve/CVE-2022-48754/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-48756 page",
"url": "https://www.suse.com/security/cve/CVE-2022-48756/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-48758 page",
"url": "https://www.suse.com/security/cve/CVE-2022-48758/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-48759 page",
"url": "https://www.suse.com/security/cve/CVE-2022-48759/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-48760 page",
"url": "https://www.suse.com/security/cve/CVE-2022-48760/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-48761 page",
"url": "https://www.suse.com/security/cve/CVE-2022-48761/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-48771 page",
"url": "https://www.suse.com/security/cve/CVE-2022-48771/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-48772 page",
"url": "https://www.suse.com/security/cve/CVE-2022-48772/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-24023 page",
"url": "https://www.suse.com/security/cve/CVE-2023-24023/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52622 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52622/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52675 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52675/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52737 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52737/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52752 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52752/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52754 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52754/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52757 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52757/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52762 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52762/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52764 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52764/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52784 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52784/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52808 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52808/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52809 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52809/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52811 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52811/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52832 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52832/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52834 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52834/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52835 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52835/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52843 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52843/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52845 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52845/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52855 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52855/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52881 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52881/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26633 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26633/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26641 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26641/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26679 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26679/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26687 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26687/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26720 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26720/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26813 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26845 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26845/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26863 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26863/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26894 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26894/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26923 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26923/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26928 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26928/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26973 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26973/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27399 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27399/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27410 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27410/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35247 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35247/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35807 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35807/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35822 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35822/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35835 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35835/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35862 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35862/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35863 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35863/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35864 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35864/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35865 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35865/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35867 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35867/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35868 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35868/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35870 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35870/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35886 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35886/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35896 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35896/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35922 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35922/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35925 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35925/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35930 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35930/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35950 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35950/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35956 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35956/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35958 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35958/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35960 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35960/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35962 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35962/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35976 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35976/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35979 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35979/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35997 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35998 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35998/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36016 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36016/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36017 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36017/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36025 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36025/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36479 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36479/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36592 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36592/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36880 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36880/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36894 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36894/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36915 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36917 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36917/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36919 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36919/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36923 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36923/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36934 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36934/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36938 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36938/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36940 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36940/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36949 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36949/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36950 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36950/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36960 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36960/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36964 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36964/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-37021 page",
"url": "https://www.suse.com/security/cve/CVE-2024-37021/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-37354 page",
"url": "https://www.suse.com/security/cve/CVE-2024-37354/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38544 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38544/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38545 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38545/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38546 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38546/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38549 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38549/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38552 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38552/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38553 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38553/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38565 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38565/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38567 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38567/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38578 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38578/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38579 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38579/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38580 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38580/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38597 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38597/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38601 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38601/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38608 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38608/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38618 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38618/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38621 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38621/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38627 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38627/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38659 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38659/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38661 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38661/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38780 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38780/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2024-07-09T14:01:02Z",
"generator": {
"date": "2024-07-09T14:01:02Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:2360-1",
"initial_release_date": "2024-07-09T14:01:02Z",
"revision_history": [
{
"date": "2024-07-09T14:01:02Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-azure-4.12.14-16.191.1.noarch",
"product": {
"name": "kernel-devel-azure-4.12.14-16.191.1.noarch",
"product_id": "kernel-devel-azure-4.12.14-16.191.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-azure-4.12.14-16.191.1.noarch",
"product": {
"name": "kernel-source-azure-4.12.14-16.191.1.noarch",
"product_id": "kernel-source-azure-4.12.14-16.191.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-azure-4.12.14-16.191.1.x86_64",
"product": {
"name": "cluster-md-kmp-azure-4.12.14-16.191.1.x86_64",
"product_id": "cluster-md-kmp-azure-4.12.14-16.191.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-azure-4.12.14-16.191.1.x86_64",
"product": {
"name": "dlm-kmp-azure-4.12.14-16.191.1.x86_64",
"product_id": "dlm-kmp-azure-4.12.14-16.191.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-azure-4.12.14-16.191.1.x86_64",
"product": {
"name": "gfs2-kmp-azure-4.12.14-16.191.1.x86_64",
"product_id": "gfs2-kmp-azure-4.12.14-16.191.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-4.12.14-16.191.1.x86_64",
"product": {
"name": "kernel-azure-4.12.14-16.191.1.x86_64",
"product_id": "kernel-azure-4.12.14-16.191.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-base-4.12.14-16.191.1.x86_64",
"product": {
"name": "kernel-azure-base-4.12.14-16.191.1.x86_64",
"product_id": "kernel-azure-base-4.12.14-16.191.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-devel-4.12.14-16.191.1.x86_64",
"product": {
"name": "kernel-azure-devel-4.12.14-16.191.1.x86_64",
"product_id": "kernel-azure-devel-4.12.14-16.191.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-extra-4.12.14-16.191.1.x86_64",
"product": {
"name": "kernel-azure-extra-4.12.14-16.191.1.x86_64",
"product_id": "kernel-azure-extra-4.12.14-16.191.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-kgraft-devel-4.12.14-16.191.1.x86_64",
"product": {
"name": "kernel-azure-kgraft-devel-4.12.14-16.191.1.x86_64",
"product_id": "kernel-azure-kgraft-devel-4.12.14-16.191.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-azure-4.12.14-16.191.1.x86_64",
"product": {
"name": "kernel-syms-azure-4.12.14-16.191.1.x86_64",
"product_id": "kernel-syms-azure-4.12.14-16.191.1.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-azure-4.12.14-16.191.1.x86_64",
"product": {
"name": "kselftests-kmp-azure-4.12.14-16.191.1.x86_64",
"product_id": "kselftests-kmp-azure-4.12.14-16.191.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-azure-4.12.14-16.191.1.x86_64",
"product": {
"name": "ocfs2-kmp-azure-4.12.14-16.191.1.x86_64",
"product_id": "ocfs2-kmp-azure-4.12.14-16.191.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-4.12.14-16.191.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64"
},
"product_reference": "kernel-azure-4.12.14-16.191.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-base-4.12.14-16.191.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64"
},
"product_reference": "kernel-azure-base-4.12.14-16.191.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-4.12.14-16.191.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64"
},
"product_reference": "kernel-azure-devel-4.12.14-16.191.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-azure-4.12.14-16.191.1.noarch as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch"
},
"product_reference": "kernel-devel-azure-4.12.14-16.191.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-azure-4.12.14-16.191.1.noarch as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch"
},
"product_reference": "kernel-source-azure-4.12.14-16.191.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-azure-4.12.14-16.191.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
},
"product_reference": "kernel-syms-azure-4.12.14-16.191.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-4.12.14-16.191.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64"
},
"product_reference": "kernel-azure-4.12.14-16.191.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-base-4.12.14-16.191.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64"
},
"product_reference": "kernel-azure-base-4.12.14-16.191.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-4.12.14-16.191.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64"
},
"product_reference": "kernel-azure-devel-4.12.14-16.191.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-azure-4.12.14-16.191.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch"
},
"product_reference": "kernel-devel-azure-4.12.14-16.191.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-azure-4.12.14-16.191.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch"
},
"product_reference": "kernel-source-azure-4.12.14-16.191.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-azure-4.12.14-16.191.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
},
"product_reference": "kernel-syms-azure-4.12.14-16.191.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-10135",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-10135"
}
],
"notes": [
{
"category": "general",
"text": "Legacy pairing and secure-connections pairing authentication in Bluetooth BR/EDR Core Specification v5.2 and earlier may allow an unauthenticated user to complete authentication without pairing credentials via adjacent access. An unauthenticated, adjacent attacker could impersonate a Bluetooth BR/EDR master or slave to pair with a previously paired remote device to successfully complete the authentication procedure without knowing the link key.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-10135",
"url": "https://www.suse.com/security/cve/CVE-2020-10135"
},
{
"category": "external",
"summary": "SUSE Bug 1171988 for CVE-2020-10135",
"url": "https://bugzilla.suse.com/1171988"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2020-10135"
},
{
"cve": "CVE-2021-43389",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-43389"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in the Linux kernel before 5.14.15. There is an array-index-out-of-bounds flaw in the detach_capi_ctr function in drivers/isdn/capi/kcapi.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-43389",
"url": "https://www.suse.com/security/cve/CVE-2021-43389"
},
{
"category": "external",
"summary": "SUSE Bug 1191958 for CVE-2021-43389",
"url": "https://bugzilla.suse.com/1191958"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2021-43389"
},
{
"cve": "CVE-2021-4439",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-4439"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nisdn: cpai: check ctr-\u003ecnr to avoid array index out of bound\n\nThe cmtp_add_connection() would add a cmtp session to a controller\nand run a kernel thread to process cmtp.\n\n\t__module_get(THIS_MODULE);\n\tsession-\u003etask = kthread_run(cmtp_session, session, \"kcmtpd_ctr_%d\",\n\t\t\t\t\t\t\t\tsession-\u003enum);\n\nDuring this process, the kernel thread would call detach_capi_ctr()\nto detach a register controller. if the controller\nwas not attached yet, detach_capi_ctr() would\ntrigger an array-index-out-bounds bug.\n\n[ 46.866069][ T6479] UBSAN: array-index-out-of-bounds in\ndrivers/isdn/capi/kcapi.c:483:21\n[ 46.867196][ T6479] index -1 is out of range for type \u0027capi_ctr *[32]\u0027\n[ 46.867982][ T6479] CPU: 1 PID: 6479 Comm: kcmtpd_ctr_0 Not tainted\n5.15.0-rc2+ #8\n[ 46.869002][ T6479] Hardware name: QEMU Standard PC (i440FX + PIIX,\n1996), BIOS 1.14.0-2 04/01/2014\n[ 46.870107][ T6479] Call Trace:\n[ 46.870473][ T6479] dump_stack_lvl+0x57/0x7d\n[ 46.870974][ T6479] ubsan_epilogue+0x5/0x40\n[ 46.871458][ T6479] __ubsan_handle_out_of_bounds.cold+0x43/0x48\n[ 46.872135][ T6479] detach_capi_ctr+0x64/0xc0\n[ 46.872639][ T6479] cmtp_session+0x5c8/0x5d0\n[ 46.873131][ T6479] ? __init_waitqueue_head+0x60/0x60\n[ 46.873712][ T6479] ? cmtp_add_msgpart+0x120/0x120\n[ 46.874256][ T6479] kthread+0x147/0x170\n[ 46.874709][ T6479] ? set_kthread_struct+0x40/0x40\n[ 46.875248][ T6479] ret_from_fork+0x1f/0x30\n[ 46.875773][ T6479]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-4439",
"url": "https://www.suse.com/security/cve/CVE-2021-4439"
},
{
"category": "external",
"summary": "SUSE Bug 1226670 for CVE-2021-4439",
"url": "https://bugzilla.suse.com/1226670"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2021-4439"
},
{
"cve": "CVE-2021-47103",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47103"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninet: fully convert sk-\u003esk_rx_dst to RCU rules\n\nsyzbot reported various issues around early demux,\none being included in this changelog [1]\n\nsk-\u003esk_rx_dst is using RCU protection without clearly\ndocumenting it.\n\nAnd following sequences in tcp_v4_do_rcv()/tcp_v6_do_rcv()\nare not following standard RCU rules.\n\n[a] dst_release(dst);\n[b] sk-\u003esk_rx_dst = NULL;\n\nThey look wrong because a delete operation of RCU protected\npointer is supposed to clear the pointer before\nthe call_rcu()/synchronize_rcu() guarding actual memory freeing.\n\nIn some cases indeed, dst could be freed before [b] is done.\n\nWe could cheat by clearing sk_rx_dst before calling\ndst_release(), but this seems the right time to stick\nto standard RCU annotations and debugging facilities.\n\n[1]\nBUG: KASAN: use-after-free in dst_check include/net/dst.h:470 [inline]\nBUG: KASAN: use-after-free in tcp_v4_early_demux+0x95b/0x960 net/ipv4/tcp_ipv4.c:1792\nRead of size 2 at addr ffff88807f1cb73a by task syz-executor.5/9204\n\nCPU: 0 PID: 9204 Comm: syz-executor.5 Not tainted 5.16.0-rc5-syzkaller #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0xcd/0x134 lib/dump_stack.c:106\n print_address_description.constprop.0.cold+0x8d/0x320 mm/kasan/report.c:247\n __kasan_report mm/kasan/report.c:433 [inline]\n kasan_report.cold+0x83/0xdf mm/kasan/report.c:450\n dst_check include/net/dst.h:470 [inline]\n tcp_v4_early_demux+0x95b/0x960 net/ipv4/tcp_ipv4.c:1792\n ip_rcv_finish_core.constprop.0+0x15de/0x1e80 net/ipv4/ip_input.c:340\n ip_list_rcv_finish.constprop.0+0x1b2/0x6e0 net/ipv4/ip_input.c:583\n ip_sublist_rcv net/ipv4/ip_input.c:609 [inline]\n ip_list_rcv+0x34e/0x490 net/ipv4/ip_input.c:644\n __netif_receive_skb_list_ptype net/core/dev.c:5508 [inline]\n __netif_receive_skb_list_core+0x549/0x8e0 net/core/dev.c:5556\n __netif_receive_skb_list net/core/dev.c:5608 [inline]\n netif_receive_skb_list_internal+0x75e/0xd80 net/core/dev.c:5699\n gro_normal_list net/core/dev.c:5853 [inline]\n gro_normal_list net/core/dev.c:5849 [inline]\n napi_complete_done+0x1f1/0x880 net/core/dev.c:6590\n virtqueue_napi_complete drivers/net/virtio_net.c:339 [inline]\n virtnet_poll+0xca2/0x11b0 drivers/net/virtio_net.c:1557\n __napi_poll+0xaf/0x440 net/core/dev.c:7023\n napi_poll net/core/dev.c:7090 [inline]\n net_rx_action+0x801/0xb40 net/core/dev.c:7177\n __do_softirq+0x29b/0x9c2 kernel/softirq.c:558\n invoke_softirq kernel/softirq.c:432 [inline]\n __irq_exit_rcu+0x123/0x180 kernel/softirq.c:637\n irq_exit_rcu+0x5/0x20 kernel/softirq.c:649\n common_interrupt+0x52/0xc0 arch/x86/kernel/irq.c:240\n asm_common_interrupt+0x1e/0x40 arch/x86/include/asm/idtentry.h:629\nRIP: 0033:0x7f5e972bfd57\nCode: 39 d1 73 14 0f 1f 80 00 00 00 00 48 8b 50 f8 48 83 e8 08 48 39 ca 77 f3 48 39 c3 73 3e 48 89 13 48 8b 50 f8 48 89 38 49 8b 0e \u003c48\u003e 8b 3e 48 83 c3 08 48 83 c6 08 eb bc 48 39 d1 72 9e 48 39 d0 73\nRSP: 002b:00007fff8a413210 EFLAGS: 00000283\nRAX: 00007f5e97108990 RBX: 00007f5e97108338 RCX: ffffffff81d3aa45\nRDX: ffffffff81d3aa45 RSI: 00007f5e97108340 RDI: ffffffff81d3aa45\nRBP: 00007f5e97107eb8 R08: 00007f5e97108d88 R09: 0000000093c2e8d9\nR10: 0000000000000000 R11: 0000000000000000 R12: 00007f5e97107eb0\nR13: 00007f5e97108338 R14: 00007f5e97107ea8 R15: 0000000000000019\n \u003c/TASK\u003e\n\nAllocated by task 13:\n kasan_save_stack+0x1e/0x50 mm/kasan/common.c:38\n kasan_set_track mm/kasan/common.c:46 [inline]\n set_alloc_info mm/kasan/common.c:434 [inline]\n __kasan_slab_alloc+0x90/0xc0 mm/kasan/common.c:467\n kasan_slab_alloc include/linux/kasan.h:259 [inline]\n slab_post_alloc_hook mm/slab.h:519 [inline]\n slab_alloc_node mm/slub.c:3234 [inline]\n slab_alloc mm/slub.c:3242 [inline]\n kmem_cache_alloc+0x202/0x3a0 mm/slub.c:3247\n dst_alloc+0x146/0x1f0 net/core/dst.c:92\n rt_dst_alloc+0x73/0x430 net/ipv4/route.c:1613\n ip_route_input_slow+0x1817/0x3a20 net/ipv4/route.c:234\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47103",
"url": "https://www.suse.com/security/cve/CVE-2021-47103"
},
{
"category": "external",
"summary": "SUSE Bug 1221010 for CVE-2021-47103",
"url": "https://bugzilla.suse.com/1221010"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2021-47103"
},
{
"cve": "CVE-2021-47191",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47191"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: scsi_debug: Fix out-of-bound read in resp_readcap16()\n\nThe following warning was observed running syzkaller:\n\n[ 3813.830724] sg_write: data in/out 65466/242 bytes for SCSI command 0x9e-- guessing data in;\n[ 3813.830724] program syz-executor not setting count and/or reply_len properly\n[ 3813.836956] ==================================================================\n[ 3813.839465] BUG: KASAN: stack-out-of-bounds in sg_copy_buffer+0x157/0x1e0\n[ 3813.841773] Read of size 4096 at addr ffff8883cf80f540 by task syz-executor/1549\n[ 3813.846612] Call Trace:\n[ 3813.846995] dump_stack+0x108/0x15f\n[ 3813.847524] print_address_description+0xa5/0x372\n[ 3813.848243] kasan_report.cold+0x236/0x2a8\n[ 3813.849439] check_memory_region+0x240/0x270\n[ 3813.850094] memcpy+0x30/0x80\n[ 3813.850553] sg_copy_buffer+0x157/0x1e0\n[ 3813.853032] sg_copy_from_buffer+0x13/0x20\n[ 3813.853660] fill_from_dev_buffer+0x135/0x370\n[ 3813.854329] resp_readcap16+0x1ac/0x280\n[ 3813.856917] schedule_resp+0x41f/0x1630\n[ 3813.858203] scsi_debug_queuecommand+0xb32/0x17e0\n[ 3813.862699] scsi_dispatch_cmd+0x330/0x950\n[ 3813.863329] scsi_request_fn+0xd8e/0x1710\n[ 3813.863946] __blk_run_queue+0x10b/0x230\n[ 3813.864544] blk_execute_rq_nowait+0x1d8/0x400\n[ 3813.865220] sg_common_write.isra.0+0xe61/0x2420\n[ 3813.871637] sg_write+0x6c8/0xef0\n[ 3813.878853] __vfs_write+0xe4/0x800\n[ 3813.883487] vfs_write+0x17b/0x530\n[ 3813.884008] ksys_write+0x103/0x270\n[ 3813.886268] __x64_sys_write+0x77/0xc0\n[ 3813.886841] do_syscall_64+0x106/0x360\n[ 3813.887415] entry_SYSCALL_64_after_hwframe+0x44/0xa9\n\nThis issue can be reproduced with the following syzkaller log:\n\nr0 = openat(0xffffffffffffff9c, \u0026(0x7f0000000040)=\u0027./file0\\x00\u0027, 0x26e1, 0x0)\nr1 = syz_open_procfs(0xffffffffffffffff, \u0026(0x7f0000000000)=\u0027fd/3\\x00\u0027)\nopen_by_handle_at(r1, \u0026(0x7f00000003c0)=ANY=[@ANYRESHEX], 0x602000)\nr2 = syz_open_dev$sg(\u0026(0x7f0000000000), 0x0, 0x40782)\nwrite$binfmt_aout(r2, \u0026(0x7f0000000340)=ANY=[@ANYBLOB=\"00000000deff000000000000000000000000000000000000000000000000000047f007af9e107a41ec395f1bded7be24277a1501ff6196a83366f4e6362bc0ff2b247f68a972989b094b2da4fb3607fcf611a22dd04310d28c75039d\"], 0x126)\n\nIn resp_readcap16() we get \"int alloc_len\" value -1104926854, and then pass\nthe huge arr_len to fill_from_dev_buffer(), but arr is only 32 bytes. This\nleads to OOB in sg_copy_buffer().\n\nTo solve this issue, define alloc_len as u32.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47191",
"url": "https://www.suse.com/security/cve/CVE-2021-47191"
},
{
"category": "external",
"summary": "SUSE Bug 1222866 for CVE-2021-47191",
"url": "https://bugzilla.suse.com/1222866"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2021-47191"
},
{
"cve": "CVE-2021-47193",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47193"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: pm80xx: Fix memory leak during rmmod\n\nDriver failed to release all memory allocated. This would lead to memory\nleak during driver removal.\n\nProperly free memory when the module is removed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47193",
"url": "https://www.suse.com/security/cve/CVE-2021-47193"
},
{
"category": "external",
"summary": "SUSE Bug 1222879 for CVE-2021-47193",
"url": "https://bugzilla.suse.com/1222879"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2021-47193"
},
{
"cve": "CVE-2021-47267",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47267"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: fix various gadget panics on 10gbps cabling\n\nusb_assign_descriptors() is called with 5 parameters,\nthe last 4 of which are the usb_descriptor_header for:\n full-speed (USB1.1 - 12Mbps [including USB1.0 low-speed @ 1.5Mbps),\n high-speed (USB2.0 - 480Mbps),\n super-speed (USB3.0 - 5Gbps),\n super-speed-plus (USB3.1 - 10Gbps).\n\nThe differences between full/high/super-speed descriptors are usually\nsubstantial (due to changes in the maximum usb block size from 64 to 512\nto 1024 bytes and other differences in the specs), while the difference\nbetween 5 and 10Gbps descriptors may be as little as nothing\n(in many cases the same tuning is simply good enough).\n\nHowever if a gadget driver calls usb_assign_descriptors() with\na NULL descriptor for super-speed-plus and is then used on a max 10gbps\nconfiguration, the kernel will crash with a null pointer dereference,\nwhen a 10gbps capable device port + cable + host port combination shows up.\n(This wouldn\u0027t happen if the gadget max-speed was set to 5gbps, but\nit of course defaults to the maximum, and there\u0027s no real reason to\nartificially limit it)\n\nThe fix is to simply use the 5gbps descriptor as the 10gbps descriptor,\nif a 10gbps descriptor wasn\u0027t provided.\n\nObviously this won\u0027t fix the problem if the 5gbps descriptor is also\nNULL, but such cases can\u0027t be so trivially solved (and any such gadgets\nare unlikely to be used with USB3 ports any way).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47267",
"url": "https://www.suse.com/security/cve/CVE-2021-47267"
},
{
"category": "external",
"summary": "SUSE Bug 1224993 for CVE-2021-47267",
"url": "https://bugzilla.suse.com/1224993"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2021-47267"
},
{
"cve": "CVE-2021-47270",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47270"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: fix various gadgets null ptr deref on 10gbps cabling.\n\nThis avoids a null pointer dereference in\nf_{ecm,eem,hid,loopback,printer,rndis,serial,sourcesink,subset,tcm}\nby simply reusing the 5gbps config for 10gbps.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47270",
"url": "https://www.suse.com/security/cve/CVE-2021-47270"
},
{
"category": "external",
"summary": "SUSE Bug 1224997 for CVE-2021-47270",
"url": "https://bugzilla.suse.com/1224997"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2021-47270"
},
{
"cve": "CVE-2021-47293",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47293"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: act_skbmod: Skip non-Ethernet packets\n\nCurrently tcf_skbmod_act() assumes that packets use Ethernet as their L2\nprotocol, which is not always the case. As an example, for CAN devices:\n\n\t$ ip link add dev vcan0 type vcan\n\t$ ip link set up vcan0\n\t$ tc qdisc add dev vcan0 root handle 1: htb\n\t$ tc filter add dev vcan0 parent 1: protocol ip prio 10 \\\n\t\tmatchall action skbmod swap mac\n\nDoing the above silently corrupts all the packets. Do not perform skbmod\nactions for non-Ethernet packets.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47293",
"url": "https://www.suse.com/security/cve/CVE-2021-47293"
},
{
"category": "external",
"summary": "SUSE Bug 1224978 for CVE-2021-47293",
"url": "https://bugzilla.suse.com/1224978"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2021-47293"
},
{
"cve": "CVE-2021-47294",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47294"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetrom: Decrease sock refcount when sock timers expire\n\nCommit 63346650c1a9 (\"netrom: switch to sock timer API\") switched to use\nsock timer API. It replaces mod_timer() by sk_reset_timer(), and\ndel_timer() by sk_stop_timer().\n\nFunction sk_reset_timer() will increase the refcount of sock if it is\ncalled on an inactive timer, hence, in case the timer expires, we need to\ndecrease the refcount ourselves in the handler, otherwise, the sock\nrefcount will be unbalanced and the sock will never be freed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47294",
"url": "https://www.suse.com/security/cve/CVE-2021-47294"
},
{
"category": "external",
"summary": "SUSE Bug 1224977 for CVE-2021-47294",
"url": "https://bugzilla.suse.com/1224977"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2021-47294"
},
{
"cve": "CVE-2021-47297",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47297"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: fix uninit-value in caif_seqpkt_sendmsg\n\nWhen nr_segs equal to zero in iovec_from_user, the object\nmsg-\u003emsg_iter.iov is uninit stack memory in caif_seqpkt_sendmsg\nwhich is defined in ___sys_sendmsg. So we cann\u0027t just judge\nmsg-\u003emsg_iter.iov-\u003ebase directlly. We can use nr_segs to judge\nmsg in caif_seqpkt_sendmsg whether has data buffers.\n\n=====================================================\nBUG: KMSAN: uninit-value in caif_seqpkt_sendmsg+0x693/0xf60 net/caif/caif_socket.c:542\nCall Trace:\n __dump_stack lib/dump_stack.c:77 [inline]\n dump_stack+0x1c9/0x220 lib/dump_stack.c:118\n kmsan_report+0xf7/0x1e0 mm/kmsan/kmsan_report.c:118\n __msan_warning+0x58/0xa0 mm/kmsan/kmsan_instr.c:215\n caif_seqpkt_sendmsg+0x693/0xf60 net/caif/caif_socket.c:542\n sock_sendmsg_nosec net/socket.c:652 [inline]\n sock_sendmsg net/socket.c:672 [inline]\n ____sys_sendmsg+0x12b6/0x1350 net/socket.c:2343\n ___sys_sendmsg net/socket.c:2397 [inline]\n __sys_sendmmsg+0x808/0xc90 net/socket.c:2480\n __compat_sys_sendmmsg net/compat.c:656 [inline]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47297",
"url": "https://www.suse.com/security/cve/CVE-2021-47297"
},
{
"category": "external",
"summary": "SUSE Bug 1224976 for CVE-2021-47297",
"url": "https://bugzilla.suse.com/1224976"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2021-47297"
},
{
"cve": "CVE-2021-47309",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47309"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: validate lwtstate-\u003edata before returning from skb_tunnel_info()\n\nskb_tunnel_info() returns pointer of lwtstate-\u003edata as ip_tunnel_info\ntype without validation. lwtstate-\u003edata can have various types such as\nmpls_iptunnel_encap, etc and these are not compatible.\nSo skb_tunnel_info() should validate before returning that pointer.\n\nSplat looks like:\nBUG: KASAN: slab-out-of-bounds in vxlan_get_route+0x418/0x4b0 [vxlan]\nRead of size 2 at addr ffff888106ec2698 by task ping/811\n\nCPU: 1 PID: 811 Comm: ping Not tainted 5.13.0+ #1195\nCall Trace:\n dump_stack_lvl+0x56/0x7b\n print_address_description.constprop.8.cold.13+0x13/0x2ee\n ? vxlan_get_route+0x418/0x4b0 [vxlan]\n ? vxlan_get_route+0x418/0x4b0 [vxlan]\n kasan_report.cold.14+0x83/0xdf\n ? vxlan_get_route+0x418/0x4b0 [vxlan]\n vxlan_get_route+0x418/0x4b0 [vxlan]\n [ ... ]\n vxlan_xmit_one+0x148b/0x32b0 [vxlan]\n [ ... ]\n vxlan_xmit+0x25c5/0x4780 [vxlan]\n [ ... ]\n dev_hard_start_xmit+0x1ae/0x6e0\n __dev_queue_xmit+0x1f39/0x31a0\n [ ... ]\n neigh_xmit+0x2f9/0x940\n mpls_xmit+0x911/0x1600 [mpls_iptunnel]\n lwtunnel_xmit+0x18f/0x450\n ip_finish_output2+0x867/0x2040\n [ ... ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47309",
"url": "https://www.suse.com/security/cve/CVE-2021-47309"
},
{
"category": "external",
"summary": "SUSE Bug 1224967 for CVE-2021-47309",
"url": "https://bugzilla.suse.com/1224967"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2021-47309"
},
{
"cve": "CVE-2021-47328",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47328"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: iscsi: Fix conn use after free during resets\n\nIf we haven\u0027t done a unbind target call we can race where\niscsi_conn_teardown wakes up the EH thread and then frees the conn while\nthose threads are still accessing the conn ehwait.\n\nWe can only do one TMF per session so this just moves the TMF fields from\nthe conn to the session. We can then rely on the\niscsi_session_teardown-\u003eiscsi_remove_session-\u003e__iscsi_unbind_session call\nto remove the target and it\u0027s devices, and know after that point there is\nno device or scsi-ml callout trying to access the session.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47328",
"url": "https://www.suse.com/security/cve/CVE-2021-47328"
},
{
"category": "external",
"summary": "SUSE Bug 1225047 for CVE-2021-47328",
"url": "https://bugzilla.suse.com/1225047"
},
{
"category": "external",
"summary": "SUSE Bug 1225080 for CVE-2021-47328",
"url": "https://bugzilla.suse.com/1225080"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2021-47328"
},
{
"cve": "CVE-2021-47354",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47354"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/sched: Avoid data corruptions\n\nWait for all dependencies of a job to complete before\nkilling it to avoid data corruptions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47354",
"url": "https://www.suse.com/security/cve/CVE-2021-47354"
},
{
"category": "external",
"summary": "SUSE Bug 1225140 for CVE-2021-47354",
"url": "https://bugzilla.suse.com/1225140"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2021-47354"
},
{
"cve": "CVE-2021-47372",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47372"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: macb: fix use after free on rmmod\n\nplat_dev-\u003edev-\u003eplatform_data is released by platform_device_unregister(),\nuse of pclk and hclk is a use-after-free. Since device unregister won\u0027t\nneed a clk device we adjust the function call sequence to fix this issue.\n\n[ 31.261225] BUG: KASAN: use-after-free in macb_remove+0x77/0xc6 [macb_pci]\n[ 31.275563] Freed by task 306:\n[ 30.276782] platform_device_release+0x25/0x80",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47372",
"url": "https://www.suse.com/security/cve/CVE-2021-47372"
},
{
"category": "external",
"summary": "SUSE Bug 1225184 for CVE-2021-47372",
"url": "https://bugzilla.suse.com/1225184"
},
{
"category": "external",
"summary": "SUSE Bug 1229946 for CVE-2021-47372",
"url": "https://bugzilla.suse.com/1229946"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "important"
}
],
"title": "CVE-2021-47372"
},
{
"cve": "CVE-2021-47379",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47379"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-cgroup: fix UAF by grabbing blkcg lock before destroying blkg pd\n\nKASAN reports a use-after-free report when doing fuzz test:\n\n[693354.104835] ==================================================================\n[693354.105094] BUG: KASAN: use-after-free in bfq_io_set_weight_legacy+0xd3/0x160\n[693354.105336] Read of size 4 at addr ffff888be0a35664 by task sh/1453338\n\n[693354.105607] CPU: 41 PID: 1453338 Comm: sh Kdump: loaded Not tainted 4.18.0-147\n[693354.105610] Hardware name: Huawei 2288H V5/BC11SPSCB0, BIOS 0.81 07/02/2018\n[693354.105612] Call Trace:\n[693354.105621] dump_stack+0xf1/0x19b\n[693354.105626] ? show_regs_print_info+0x5/0x5\n[693354.105634] ? printk+0x9c/0xc3\n[693354.105638] ? cpumask_weight+0x1f/0x1f\n[693354.105648] print_address_description+0x70/0x360\n[693354.105654] kasan_report+0x1b2/0x330\n[693354.105659] ? bfq_io_set_weight_legacy+0xd3/0x160\n[693354.105665] ? bfq_io_set_weight_legacy+0xd3/0x160\n[693354.105670] bfq_io_set_weight_legacy+0xd3/0x160\n[693354.105675] ? bfq_cpd_init+0x20/0x20\n[693354.105683] cgroup_file_write+0x3aa/0x510\n[693354.105693] ? ___slab_alloc+0x507/0x540\n[693354.105698] ? cgroup_file_poll+0x60/0x60\n[693354.105702] ? 0xffffffff89600000\n[693354.105708] ? usercopy_abort+0x90/0x90\n[693354.105716] ? mutex_lock+0xef/0x180\n[693354.105726] kernfs_fop_write+0x1ab/0x280\n[693354.105732] ? cgroup_file_poll+0x60/0x60\n[693354.105738] vfs_write+0xe7/0x230\n[693354.105744] ksys_write+0xb0/0x140\n[693354.105749] ? __ia32_sys_read+0x50/0x50\n[693354.105760] do_syscall_64+0x112/0x370\n[693354.105766] ? syscall_return_slowpath+0x260/0x260\n[693354.105772] ? do_page_fault+0x9b/0x270\n[693354.105779] ? prepare_exit_to_usermode+0xf9/0x1a0\n[693354.105784] ? enter_from_user_mode+0x30/0x30\n[693354.105793] entry_SYSCALL_64_after_hwframe+0x65/0xca\n\n[693354.105875] Allocated by task 1453337:\n[693354.106001] kasan_kmalloc+0xa0/0xd0\n[693354.106006] kmem_cache_alloc_node_trace+0x108/0x220\n[693354.106010] bfq_pd_alloc+0x96/0x120\n[693354.106015] blkcg_activate_policy+0x1b7/0x2b0\n[693354.106020] bfq_create_group_hierarchy+0x1e/0x80\n[693354.106026] bfq_init_queue+0x678/0x8c0\n[693354.106031] blk_mq_init_sched+0x1f8/0x460\n[693354.106037] elevator_switch_mq+0xe1/0x240\n[693354.106041] elevator_switch+0x25/0x40\n[693354.106045] elv_iosched_store+0x1a1/0x230\n[693354.106049] queue_attr_store+0x78/0xb0\n[693354.106053] kernfs_fop_write+0x1ab/0x280\n[693354.106056] vfs_write+0xe7/0x230\n[693354.106060] ksys_write+0xb0/0x140\n[693354.106064] do_syscall_64+0x112/0x370\n[693354.106069] entry_SYSCALL_64_after_hwframe+0x65/0xca\n\n[693354.106114] Freed by task 1453336:\n[693354.106225] __kasan_slab_free+0x130/0x180\n[693354.106229] kfree+0x90/0x1b0\n[693354.106233] blkcg_deactivate_policy+0x12c/0x220\n[693354.106238] bfq_exit_queue+0xf5/0x110\n[693354.106241] blk_mq_exit_sched+0x104/0x130\n[693354.106245] __elevator_exit+0x45/0x60\n[693354.106249] elevator_switch_mq+0xd6/0x240\n[693354.106253] elevator_switch+0x25/0x40\n[693354.106257] elv_iosched_store+0x1a1/0x230\n[693354.106261] queue_attr_store+0x78/0xb0\n[693354.106264] kernfs_fop_write+0x1ab/0x280\n[693354.106268] vfs_write+0xe7/0x230\n[693354.106271] ksys_write+0xb0/0x140\n[693354.106275] do_syscall_64+0x112/0x370\n[693354.106280] entry_SYSCALL_64_after_hwframe+0x65/0xca\n\n[693354.106329] The buggy address belongs to the object at ffff888be0a35580\n which belongs to the cache kmalloc-1k of size 1024\n[693354.106736] The buggy address is located 228 bytes inside of\n 1024-byte region [ffff888be0a35580, ffff888be0a35980)\n[693354.107114] The buggy address belongs to the page:\n[693354.107273] page:ffffea002f828c00 count:1 mapcount:0 mapping:ffff888107c17080 index:0x0 compound_mapcount: 0\n[693354.107606] flags: 0x17ffffc0008100(slab|head)\n[693354.107760] raw: 0017ffffc0008100 ffffea002fcbc808 ffffea0030bd3a08 ffff888107c17080\n[693354.108020] r\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47379",
"url": "https://www.suse.com/security/cve/CVE-2021-47379"
},
{
"category": "external",
"summary": "SUSE Bug 1225203 for CVE-2021-47379",
"url": "https://bugzilla.suse.com/1225203"
},
{
"category": "external",
"summary": "SUSE Bug 1225204 for CVE-2021-47379",
"url": "https://bugzilla.suse.com/1225204"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2021-47379"
},
{
"cve": "CVE-2021-47407",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47407"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: x86: Handle SRCU initialization failure during page track init\n\nCheck the return of init_srcu_struct(), which can fail due to OOM, when\ninitializing the page track mechanism. Lack of checking leads to a NULL\npointer deref found by a modified syzkaller.\n\n[Move the call towards the beginning of kvm_arch_init_vm. - Paolo]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47407",
"url": "https://www.suse.com/security/cve/CVE-2021-47407"
},
{
"category": "external",
"summary": "SUSE Bug 1225306 for CVE-2021-47407",
"url": "https://bugzilla.suse.com/1225306"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2021-47407"
},
{
"cve": "CVE-2021-47418",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47418"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet_sched: fix NULL deref in fifo_set_limit()\n\nsyzbot reported another NULL deref in fifo_set_limit() [1]\n\nI could repro the issue with :\n\nunshare -n\ntc qd add dev lo root handle 1:0 tbf limit 200000 burst 70000 rate 100Mbit\ntc qd replace dev lo parent 1:0 pfifo_fast\ntc qd change dev lo root handle 1:0 tbf limit 300000 burst 70000 rate 100Mbit\n\npfifo_fast does not have a change() operation.\nMake fifo_set_limit() more robust about this.\n\n[1]\nBUG: kernel NULL pointer dereference, address: 0000000000000000\nPGD 1cf99067 P4D 1cf99067 PUD 7ca49067 PMD 0\nOops: 0010 [#1] PREEMPT SMP KASAN\nCPU: 1 PID: 14443 Comm: syz-executor959 Not tainted 5.15.0-rc3-syzkaller #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011\nRIP: 0010:0x0\nCode: Unable to access opcode bytes at RIP 0xffffffffffffffd6.\nRSP: 0018:ffffc9000e2f7310 EFLAGS: 00010246\nRAX: dffffc0000000000 RBX: ffffffff8d6ecc00 RCX: 0000000000000000\nRDX: 0000000000000000 RSI: ffff888024c27910 RDI: ffff888071e34000\nRBP: ffff888071e34000 R08: 0000000000000001 R09: ffffffff8fcfb947\nR10: 0000000000000001 R11: 0000000000000000 R12: ffff888024c27910\nR13: ffff888071e34018 R14: 0000000000000000 R15: ffff88801ef74800\nFS: 00007f321d897700(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: ffffffffffffffd6 CR3: 00000000722c3000 CR4: 00000000003506e0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n fifo_set_limit net/sched/sch_fifo.c:242 [inline]\n fifo_set_limit+0x198/0x210 net/sched/sch_fifo.c:227\n tbf_change+0x6ec/0x16d0 net/sched/sch_tbf.c:418\n qdisc_change net/sched/sch_api.c:1332 [inline]\n tc_modify_qdisc+0xd9a/0x1a60 net/sched/sch_api.c:1634\n rtnetlink_rcv_msg+0x413/0xb80 net/core/rtnetlink.c:5572\n netlink_rcv_skb+0x153/0x420 net/netlink/af_netlink.c:2504\n netlink_unicast_kernel net/netlink/af_netlink.c:1314 [inline]\n netlink_unicast+0x533/0x7d0 net/netlink/af_netlink.c:1340\n netlink_sendmsg+0x86d/0xdb0 net/netlink/af_netlink.c:1929\n sock_sendmsg_nosec net/socket.c:704 [inline]\n sock_sendmsg+0xcf/0x120 net/socket.c:724\n ____sys_sendmsg+0x6e8/0x810 net/socket.c:2409\n ___sys_sendmsg+0xf3/0x170 net/socket.c:2463\n __sys_sendmsg+0xe5/0x1b0 net/socket.c:2492\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x44/0xae",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47418",
"url": "https://www.suse.com/security/cve/CVE-2021-47418"
},
{
"category": "external",
"summary": "SUSE Bug 1225337 for CVE-2021-47418",
"url": "https://bugzilla.suse.com/1225337"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2021-47418"
},
{
"cve": "CVE-2021-47434",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47434"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxhci: Fix command ring pointer corruption while aborting a command\n\nThe command ring pointer is located at [6:63] bits of the command\nring control register (CRCR). All the control bits like command stop,\nabort are located at [0:3] bits. While aborting a command, we read the\nCRCR and set the abort bit and write to the CRCR. The read will always\ngive command ring pointer as all zeros. So we essentially write only\nthe control bits. Since we split the 64 bit write into two 32 bit writes,\nthere is a possibility of xHC command ring stopped before the upper\ndword (all zeros) is written. If that happens, xHC updates the upper\ndword of its internal command ring pointer with all zeros. Next time,\nwhen the command ring is restarted, we see xHC memory access failures.\nFix this issue by only writing to the lower dword of CRCR where all\ncontrol bits are located.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47434",
"url": "https://www.suse.com/security/cve/CVE-2021-47434"
},
{
"category": "external",
"summary": "SUSE Bug 1225232 for CVE-2021-47434",
"url": "https://bugzilla.suse.com/1225232"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2021-47434"
},
{
"cve": "CVE-2021-47445",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47445"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm: Fix null pointer dereference on pointer edp\n\nThe initialization of pointer dev dereferences pointer edp before\nedp is null checked, so there is a potential null pointer deference\nissue. Fix this by only dereferencing edp after edp has been null\nchecked.\n\nAddresses-Coverity: (\"Dereference before null check\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47445",
"url": "https://www.suse.com/security/cve/CVE-2021-47445"
},
{
"category": "external",
"summary": "SUSE Bug 1225261 for CVE-2021-47445",
"url": "https://bugzilla.suse.com/1225261"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2021-47445"
},
{
"cve": "CVE-2021-47518",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47518"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfc: fix potential NULL pointer deref in nfc_genl_dump_ses_done\n\nThe done() netlink callback nfc_genl_dump_ses_done() should check if\nreceived argument is non-NULL, because its allocation could fail earlier\nin dumpit() (nfc_genl_dump_ses()).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47518",
"url": "https://www.suse.com/security/cve/CVE-2021-47518"
},
{
"category": "external",
"summary": "SUSE Bug 1225372 for CVE-2021-47518",
"url": "https://bugzilla.suse.com/1225372"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2021-47518"
},
{
"cve": "CVE-2021-47544",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47544"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: fix page frag corruption on page fault\n\nSteffen reported a TCP stream corruption for HTTP requests\nserved by the apache web-server using a cifs mount-point\nand memory mapping the relevant file.\n\nThe root cause is quite similar to the one addressed by\ncommit 20eb4f29b602 (\"net: fix sk_page_frag() recursion from\nmemory reclaim\"). Here the nested access to the task page frag\nis caused by a page fault on the (mmapped) user-space memory\nbuffer coming from the cifs file.\n\nThe page fault handler performs an smb transaction on a different\nsocket, inside the same process context. Since sk-\u003esk_allaction\nfor such socket does not prevent the usage for the task_frag,\nthe nested allocation modify \"under the hood\" the page frag\nin use by the outer sendmsg call, corrupting the stream.\n\nThe overall relevant stack trace looks like the following:\n\nhttpd 78268 [001] 3461630.850950: probe:tcp_sendmsg_locked:\n ffffffff91461d91 tcp_sendmsg_locked+0x1\n ffffffff91462b57 tcp_sendmsg+0x27\n ffffffff9139814e sock_sendmsg+0x3e\n ffffffffc06dfe1d smb_send_kvec+0x28\n [...]\n ffffffffc06cfaf8 cifs_readpages+0x213\n ffffffff90e83c4b read_pages+0x6b\n ffffffff90e83f31 __do_page_cache_readahead+0x1c1\n ffffffff90e79e98 filemap_fault+0x788\n ffffffff90eb0458 __do_fault+0x38\n ffffffff90eb5280 do_fault+0x1a0\n ffffffff90eb7c84 __handle_mm_fault+0x4d4\n ffffffff90eb8093 handle_mm_fault+0xc3\n ffffffff90c74f6d __do_page_fault+0x1ed\n ffffffff90c75277 do_page_fault+0x37\n ffffffff9160111e page_fault+0x1e\n ffffffff9109e7b5 copyin+0x25\n ffffffff9109eb40 _copy_from_iter_full+0xe0\n ffffffff91462370 tcp_sendmsg_locked+0x5e0\n ffffffff91462370 tcp_sendmsg_locked+0x5e0\n ffffffff91462b57 tcp_sendmsg+0x27\n ffffffff9139815c sock_sendmsg+0x4c\n ffffffff913981f7 sock_write_iter+0x97\n ffffffff90f2cc56 do_iter_readv_writev+0x156\n ffffffff90f2dff0 do_iter_write+0x80\n ffffffff90f2e1c3 vfs_writev+0xa3\n ffffffff90f2e27c do_writev+0x5c\n ffffffff90c042bb do_syscall_64+0x5b\n ffffffff916000ad entry_SYSCALL_64_after_hwframe+0x65\n\nThe cifs filesystem rightfully sets sk_allocations to GFP_NOFS,\nwe can avoid the nesting using the sk page frag for allocation\nlacking the __GFP_FS flag. Do not define an additional mm-helper\nfor that, as this is strictly tied to the sk page frag usage.\n\nv1 -\u003e v2:\n - use a stricted sk_page_frag() check instead of reordering the\n code (Eric)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47544",
"url": "https://www.suse.com/security/cve/CVE-2021-47544"
},
{
"category": "external",
"summary": "SUSE Bug 1225463 for CVE-2021-47544",
"url": "https://bugzilla.suse.com/1225463"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2021-47544"
},
{
"cve": "CVE-2021-47566",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47566"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nproc/vmcore: fix clearing user buffer by properly using clear_user()\n\nTo clear a user buffer we cannot simply use memset, we have to use\nclear_user(). With a virtio-mem device that registers a vmcore_cb and\nhas some logically unplugged memory inside an added Linux memory block,\nI can easily trigger a BUG by copying the vmcore via \"cp\":\n\n systemd[1]: Starting Kdump Vmcore Save Service...\n kdump[420]: Kdump is using the default log level(3).\n kdump[453]: saving to /sysroot/var/crash/127.0.0.1-2021-11-11-14:59:22/\n kdump[458]: saving vmcore-dmesg.txt to /sysroot/var/crash/127.0.0.1-2021-11-11-14:59:22/\n kdump[465]: saving vmcore-dmesg.txt complete\n kdump[467]: saving vmcore\n BUG: unable to handle page fault for address: 00007f2374e01000\n #PF: supervisor write access in kernel mode\n #PF: error_code(0x0003) - permissions violation\n PGD 7a523067 P4D 7a523067 PUD 7a528067 PMD 7a525067 PTE 800000007048f867\n Oops: 0003 [#1] PREEMPT SMP NOPTI\n CPU: 0 PID: 468 Comm: cp Not tainted 5.15.0+ #6\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.14.0-27-g64f37cc530f1-prebuilt.qemu.org 04/01/2014\n RIP: 0010:read_from_oldmem.part.0.cold+0x1d/0x86\n Code: ff ff ff e8 05 ff fe ff e9 b9 e9 7f ff 48 89 de 48 c7 c7 38 3b 60 82 e8 f1 fe fe ff 83 fd 08 72 3c 49 8d 7d 08 4c 89 e9 89 e8 \u003c49\u003e c7 45 00 00 00 00 00 49 c7 44 05 f8 00 00 00 00 48 83 e7 f81\n RSP: 0018:ffffc9000073be08 EFLAGS: 00010212\n RAX: 0000000000001000 RBX: 00000000002fd000 RCX: 00007f2374e01000\n RDX: 0000000000000001 RSI: 00000000ffffdfff RDI: 00007f2374e01008\n RBP: 0000000000001000 R08: 0000000000000000 R09: ffffc9000073bc50\n R10: ffffc9000073bc48 R11: ffffffff829461a8 R12: 000000000000f000\n R13: 00007f2374e01000 R14: 0000000000000000 R15: ffff88807bd421e8\n FS: 00007f2374e12140(0000) GS:ffff88807f000000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 00007f2374e01000 CR3: 000000007a4aa000 CR4: 0000000000350eb0\n Call Trace:\n read_vmcore+0x236/0x2c0\n proc_reg_read+0x55/0xa0\n vfs_read+0x95/0x190\n ksys_read+0x4f/0xc0\n do_syscall_64+0x3b/0x90\n entry_SYSCALL_64_after_hwframe+0x44/0xae\n\nSome x86-64 CPUs have a CPU feature called \"Supervisor Mode Access\nPrevention (SMAP)\", which is used to detect wrong access from the kernel\nto user buffers like this: SMAP triggers a permissions violation on\nwrong access. In the x86-64 variant of clear_user(), SMAP is properly\nhandled via clac()+stac().\n\nTo fix, properly use clear_user() when we\u0027re dealing with a user buffer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47566",
"url": "https://www.suse.com/security/cve/CVE-2021-47566"
},
{
"category": "external",
"summary": "SUSE Bug 1225514 for CVE-2021-47566",
"url": "https://bugzilla.suse.com/1225514"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2021-47566"
},
{
"cve": "CVE-2021-47571",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47571"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstaging: rtl8192e: Fix use after free in _rtl92e_pci_disconnect()\n\nThe free_rtllib() function frees the \"dev\" pointer so there is use\nafter free on the next line. Re-arrange things to avoid that.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47571",
"url": "https://www.suse.com/security/cve/CVE-2021-47571"
},
{
"category": "external",
"summary": "SUSE Bug 1225518 for CVE-2021-47571",
"url": "https://bugzilla.suse.com/1225518"
},
{
"category": "external",
"summary": "SUSE Bug 1227551 for CVE-2021-47571",
"url": "https://bugzilla.suse.com/1227551"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "important"
}
],
"title": "CVE-2021-47571"
},
{
"cve": "CVE-2021-47576",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47576"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: scsi_debug: Sanity check block descriptor length in resp_mode_select()\n\nIn resp_mode_select() sanity check the block descriptor len to avoid UAF.\n\nBUG: KASAN: use-after-free in resp_mode_select+0xa4c/0xb40 drivers/scsi/scsi_debug.c:2509\nRead of size 1 at addr ffff888026670f50 by task scsicmd/15032\n\nCPU: 1 PID: 15032 Comm: scsicmd Not tainted 5.15.0-01d0625 #15\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x89/0xb5 lib/dump_stack.c:107\n print_address_description.constprop.9+0x28/0x160 mm/kasan/report.c:257\n kasan_report.cold.14+0x7d/0x117 mm/kasan/report.c:443\n __asan_report_load1_noabort+0x14/0x20 mm/kasan/report_generic.c:306\n resp_mode_select+0xa4c/0xb40 drivers/scsi/scsi_debug.c:2509\n schedule_resp+0x4af/0x1a10 drivers/scsi/scsi_debug.c:5483\n scsi_debug_queuecommand+0x8c9/0x1e70 drivers/scsi/scsi_debug.c:7537\n scsi_queue_rq+0x16b4/0x2d10 drivers/scsi/scsi_lib.c:1521\n blk_mq_dispatch_rq_list+0xb9b/0x2700 block/blk-mq.c:1640\n __blk_mq_sched_dispatch_requests+0x28f/0x590 block/blk-mq-sched.c:325\n blk_mq_sched_dispatch_requests+0x105/0x190 block/blk-mq-sched.c:358\n __blk_mq_run_hw_queue+0xe5/0x150 block/blk-mq.c:1762\n __blk_mq_delay_run_hw_queue+0x4f8/0x5c0 block/blk-mq.c:1839\n blk_mq_run_hw_queue+0x18d/0x350 block/blk-mq.c:1891\n blk_mq_sched_insert_request+0x3db/0x4e0 block/blk-mq-sched.c:474\n blk_execute_rq_nowait+0x16b/0x1c0 block/blk-exec.c:63\n sg_common_write.isra.18+0xeb3/0x2000 drivers/scsi/sg.c:837\n sg_new_write.isra.19+0x570/0x8c0 drivers/scsi/sg.c:775\n sg_ioctl_common+0x14d6/0x2710 drivers/scsi/sg.c:941\n sg_ioctl+0xa2/0x180 drivers/scsi/sg.c:1166\n __x64_sys_ioctl+0x19d/0x220 fs/ioctl.c:52\n do_syscall_64+0x3a/0x80 arch/x86/entry/common.c:50\n entry_SYSCALL_64_after_hwframe+0x44/0xae arch/x86/entry/entry_64.S:113",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47576",
"url": "https://www.suse.com/security/cve/CVE-2021-47576"
},
{
"category": "external",
"summary": "SUSE Bug 1226537 for CVE-2021-47576",
"url": "https://bugzilla.suse.com/1226537"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.4,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "low"
}
],
"title": "CVE-2021-47576"
},
{
"cve": "CVE-2021-47587",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47587"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: systemport: Add global locking for descriptor lifecycle\n\nThe descriptor list is a shared resource across all of the transmit queues, and\nthe locking mechanism used today only protects concurrency across a given\ntransmit queue between the transmit and reclaiming. This creates an opportunity\nfor the SYSTEMPORT hardware to work on corrupted descriptors if we have\nmultiple producers at once which is the case when using multiple transmit\nqueues.\n\nThis was particularly noticeable when using multiple flows/transmit queues and\nit showed up in interesting ways in that UDP packets would get a correct UDP\nheader checksum being calculated over an incorrect packet length. Similarly TCP\npackets would get an equally correct checksum computed by the hardware over an\nincorrect packet length.\n\nThe SYSTEMPORT hardware maintains an internal descriptor list that it re-arranges\nwhen the driver produces a new descriptor anytime it writes to the\nWRITE_PORT_{HI,LO} registers, there is however some delay in the hardware to\nre-organize its descriptors and it is possible that concurrent TX queues\neventually break this internal allocation scheme to the point where the\nlength/status part of the descriptor gets used for an incorrect data buffer.\n\nThe fix is to impose a global serialization for all TX queues in the short\nsection where we are writing to the WRITE_PORT_{HI,LO} registers which solves\nthe corruption even with multiple concurrent TX queues being used.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47587",
"url": "https://www.suse.com/security/cve/CVE-2021-47587"
},
{
"category": "external",
"summary": "SUSE Bug 1226567 for CVE-2021-47587",
"url": "https://bugzilla.suse.com/1226567"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2021-47587"
},
{
"cve": "CVE-2021-47589",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47589"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nigbvf: fix double free in `igbvf_probe`\n\nIn `igbvf_probe`, if register_netdev() fails, the program will go to\nlabel err_hw_init, and then to label err_ioremap. In free_netdev() which\nis just below label err_ioremap, there is `list_for_each_entry_safe` and\n`netif_napi_del` which aims to delete all entries in `dev-\u003enapi_list`.\nThe program has added an entry `adapter-\u003erx_ring-\u003enapi` which is added by\n`netif_napi_add` in igbvf_alloc_queues(). However, adapter-\u003erx_ring has\nbeen freed below label err_hw_init. So this a UAF.\n\nIn terms of how to patch the problem, we can refer to igbvf_remove() and\ndelete the entry before `adapter-\u003erx_ring`.\n\nThe KASAN logs are as follows:\n\n[ 35.126075] BUG: KASAN: use-after-free in free_netdev+0x1fd/0x450\n[ 35.127170] Read of size 8 at addr ffff88810126d990 by task modprobe/366\n[ 35.128360]\n[ 35.128643] CPU: 1 PID: 366 Comm: modprobe Not tainted 5.15.0-rc2+ #14\n[ 35.129789] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.12.0-59-gc9ba5276e321-prebuilt.qemu.org 04/01/2014\n[ 35.131749] Call Trace:\n[ 35.132199] dump_stack_lvl+0x59/0x7b\n[ 35.132865] print_address_description+0x7c/0x3b0\n[ 35.133707] ? free_netdev+0x1fd/0x450\n[ 35.134378] __kasan_report+0x160/0x1c0\n[ 35.135063] ? free_netdev+0x1fd/0x450\n[ 35.135738] kasan_report+0x4b/0x70\n[ 35.136367] free_netdev+0x1fd/0x450\n[ 35.137006] igbvf_probe+0x121d/0x1a10 [igbvf]\n[ 35.137808] ? igbvf_vlan_rx_add_vid+0x100/0x100 [igbvf]\n[ 35.138751] local_pci_probe+0x13c/0x1f0\n[ 35.139461] pci_device_probe+0x37e/0x6c0\n[ 35.165526]\n[ 35.165806] Allocated by task 366:\n[ 35.166414] ____kasan_kmalloc+0xc4/0xf0\n[ 35.167117] foo_kmem_cache_alloc_trace+0x3c/0x50 [igbvf]\n[ 35.168078] igbvf_probe+0x9c5/0x1a10 [igbvf]\n[ 35.168866] local_pci_probe+0x13c/0x1f0\n[ 35.169565] pci_device_probe+0x37e/0x6c0\n[ 35.179713]\n[ 35.179993] Freed by task 366:\n[ 35.180539] kasan_set_track+0x4c/0x80\n[ 35.181211] kasan_set_free_info+0x1f/0x40\n[ 35.181942] ____kasan_slab_free+0x103/0x140\n[ 35.182703] kfree+0xe3/0x250\n[ 35.183239] igbvf_probe+0x1173/0x1a10 [igbvf]\n[ 35.184040] local_pci_probe+0x13c/0x1f0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47589",
"url": "https://www.suse.com/security/cve/CVE-2021-47589"
},
{
"category": "external",
"summary": "SUSE Bug 1226557 for CVE-2021-47589",
"url": "https://bugzilla.suse.com/1226557"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2021-47589"
},
{
"cve": "CVE-2021-47600",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47600"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm btree remove: fix use after free in rebalance_children()\n\nMove dm_tm_unlock() after dm_tm_dec().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47600",
"url": "https://www.suse.com/security/cve/CVE-2021-47600"
},
{
"category": "external",
"summary": "SUSE Bug 1226575 for CVE-2021-47600",
"url": "https://bugzilla.suse.com/1226575"
},
{
"category": "external",
"summary": "SUSE Bug 1227472 for CVE-2021-47600",
"url": "https://bugzilla.suse.com/1227472"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2021-47600"
},
{
"cve": "CVE-2021-47602",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47602"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmac80211: track only QoS data frames for admission control\n\nFor admission control, obviously all of that only works for\nQoS data frames, otherwise we cannot even access the QoS\nfield in the header.\n\nSyzbot reported (see below) an uninitialized value here due\nto a status of a non-QoS nullfunc packet, which isn\u0027t even\nlong enough to contain the QoS header.\n\nFix this to only do anything for QoS data packets.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47602",
"url": "https://www.suse.com/security/cve/CVE-2021-47602"
},
{
"category": "external",
"summary": "SUSE Bug 1226554 for CVE-2021-47602",
"url": "https://bugzilla.suse.com/1226554"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2021-47602"
},
{
"cve": "CVE-2021-47603",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47603"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naudit: improve robustness of the audit queue handling\n\nIf the audit daemon were ever to get stuck in a stopped state the\nkernel\u0027s kauditd_thread() could get blocked attempting to send audit\nrecords to the userspace audit daemon. With the kernel thread\nblocked it is possible that the audit queue could grow unbounded as\ncertain audit record generating events must be exempt from the queue\nlimits else the system enter a deadlock state.\n\nThis patch resolves this problem by lowering the kernel thread\u0027s\nsocket sending timeout from MAX_SCHEDULE_TIMEOUT to HZ/10 and tweaks\nthe kauditd_send_queue() function to better manage the various audit\nqueues when connection problems occur between the kernel and the\naudit daemon. With this patch, the backlog may temporarily grow\nbeyond the defined limits when the audit daemon is stopped and the\nsystem is under heavy audit pressure, but kauditd_thread() will\ncontinue to make progress and drain the queues as it would for other\nconnection problems. For example, with the audit daemon put into a\nstopped state and the system configured to audit every syscall it\nwas still possible to shutdown the system without a kernel panic,\ndeadlock, etc.; granted, the system was slow to shutdown but that is\nto be expected given the extreme pressure of recording every syscall.\n\nThe timeout value of HZ/10 was chosen primarily through\nexperimentation and this developer\u0027s \"gut feeling\". There is likely\nno one perfect value, but as this scenario is limited in scope (root\nprivileges would be needed to send SIGSTOP to the audit daemon), it\nis likely not worth exposing this as a tunable at present. This can\nalways be done at a later date if it proves necessary.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47603",
"url": "https://www.suse.com/security/cve/CVE-2021-47603"
},
{
"category": "external",
"summary": "SUSE Bug 1226577 for CVE-2021-47603",
"url": "https://bugzilla.suse.com/1226577"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2021-47603"
},
{
"cve": "CVE-2021-47609",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47609"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: arm_scpi: Fix string overflow in SCPI genpd driver\n\nWithout the bound checks for scpi_pd-\u003ename, it could result in the buffer\noverflow when copying the SCPI device name from the corresponding device\ntree node as the name string is set at maximum size of 30.\n\nLet us fix it by using devm_kasprintf so that the string buffer is\nallocated dynamically.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47609",
"url": "https://www.suse.com/security/cve/CVE-2021-47609"
},
{
"category": "external",
"summary": "SUSE Bug 1226562 for CVE-2021-47609",
"url": "https://bugzilla.suse.com/1226562"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2021-47609"
},
{
"cve": "CVE-2021-47617",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47617"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: pciehp: Fix infinite loop in IRQ handler upon power fault\n\nThe Power Fault Detected bit in the Slot Status register differs from\nall other hotplug events in that it is sticky: It can only be cleared\nafter turning off slot power. Per PCIe r5.0, sec. 6.7.1.8:\n\n If a power controller detects a main power fault on the hot-plug slot,\n it must automatically set its internal main power fault latch [...].\n The main power fault latch is cleared when software turns off power to\n the hot-plug slot.\n\nThe stickiness used to cause interrupt storms and infinite loops which\nwere fixed in 2009 by commits 5651c48cfafe (\"PCI pciehp: fix power fault\ninterrupt storm problem\") and 99f0169c17f3 (\"PCI: pciehp: enable\nsoftware notification on empty slots\").\n\nUnfortunately in 2020 the infinite loop issue was inadvertently\nreintroduced by commit 8edf5332c393 (\"PCI: pciehp: Fix MSI interrupt\nrace\"): The hardirq handler pciehp_isr() clears the PFD bit until\npciehp\u0027s power_fault_detected flag is set. That happens in the IRQ\nthread pciehp_ist(), which never learns of the event because the hardirq\nhandler is stuck in an infinite loop. Fix by setting the\npower_fault_detected flag already in the hardirq handler.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47617",
"url": "https://www.suse.com/security/cve/CVE-2021-47617"
},
{
"category": "external",
"summary": "SUSE Bug 1226614 for CVE-2021-47617",
"url": "https://bugzilla.suse.com/1226614"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2021-47617"
},
{
"cve": "CVE-2022-0435",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0435"
}
],
"notes": [
{
"category": "general",
"text": "A stack overflow flaw was found in the Linux kernel\u0027s TIPC protocol functionality in the way a user sends a packet with malicious content where the number of domain member nodes is higher than the 64 allowed. This flaw allows a remote user to crash the system or possibly escalate their privileges if they have access to the TIPC network.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0435",
"url": "https://www.suse.com/security/cve/CVE-2022-0435"
},
{
"category": "external",
"summary": "SUSE Bug 1195254 for CVE-2022-0435",
"url": "https://bugzilla.suse.com/1195254"
},
{
"category": "external",
"summary": "SUSE Bug 1195308 for CVE-2022-0435",
"url": "https://bugzilla.suse.com/1195308"
},
{
"category": "external",
"summary": "SUSE Bug 1226672 for CVE-2022-0435",
"url": "https://bugzilla.suse.com/1226672"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "important"
}
],
"title": "CVE-2022-0435"
},
{
"cve": "CVE-2022-22942",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-22942"
}
],
"notes": [
{
"category": "general",
"text": "The vmwgfx driver contains a local privilege escalation vulnerability that allows unprivileged users to gain access to files opened by other processes on the system through a dangling \u0027file\u0027 pointer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-22942",
"url": "https://www.suse.com/security/cve/CVE-2022-22942"
},
{
"category": "external",
"summary": "SUSE Bug 1195065 for CVE-2022-22942",
"url": "https://bugzilla.suse.com/1195065"
},
{
"category": "external",
"summary": "SUSE Bug 1195951 for CVE-2022-22942",
"url": "https://bugzilla.suse.com/1195951"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2022-22942"
},
{
"cve": "CVE-2022-48711",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-48711"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntipc: improve size validations for received domain records\n\nThe function tipc_mon_rcv() allows a node to receive and process\ndomain_record structs from peer nodes to track their views of the\nnetwork topology.\n\nThis patch verifies that the number of members in a received domain\nrecord does not exceed the limit defined by MAX_MON_DOMAIN, something\nthat may otherwise lead to a stack overflow.\n\ntipc_mon_rcv() is called from the function tipc_link_proto_rcv(), where\nwe are reading a 32 bit message data length field into a uint16. To\navert any risk of bit overflow, we add an extra sanity check for this in\nthat function. We cannot see that happen with the current code, but\nfuture designers being unaware of this risk, may introduce it by\nallowing delivery of very large (\u003e 64k) sk buffers from the bearer\nlayer. This potential problem was identified by Eric Dumazet.\n\nThis fixes CVE-2022-0435",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-48711",
"url": "https://www.suse.com/security/cve/CVE-2022-48711"
},
{
"category": "external",
"summary": "SUSE Bug 1226672 for CVE-2022-48711",
"url": "https://bugzilla.suse.com/1226672"
},
{
"category": "external",
"summary": "SUSE Bug 1227473 for CVE-2022-48711",
"url": "https://bugzilla.suse.com/1227473"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2022-48711"
},
{
"cve": "CVE-2022-48715",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-48715"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: bnx2fc: Make bnx2fc_recv_frame() mp safe\n\nRunning tests with a debug kernel shows that bnx2fc_recv_frame() is\nmodifying the per_cpu lport stats counters in a non-mpsafe way. Just boot\na debug kernel and run the bnx2fc driver with the hardware enabled.\n\n[ 1391.699147] BUG: using smp_processor_id() in preemptible [00000000] code: bnx2fc_\n[ 1391.699160] caller is bnx2fc_recv_frame+0xbf9/0x1760 [bnx2fc]\n[ 1391.699174] CPU: 2 PID: 4355 Comm: bnx2fc_l2_threa Kdump: loaded Tainted: G B\n[ 1391.699180] Hardware name: HP ProLiant DL120 G7, BIOS J01 07/01/2013\n[ 1391.699183] Call Trace:\n[ 1391.699188] dump_stack_lvl+0x57/0x7d\n[ 1391.699198] check_preemption_disabled+0xc8/0xd0\n[ 1391.699205] bnx2fc_recv_frame+0xbf9/0x1760 [bnx2fc]\n[ 1391.699215] ? do_raw_spin_trylock+0xb5/0x180\n[ 1391.699221] ? bnx2fc_npiv_create_vports.isra.0+0x4e0/0x4e0 [bnx2fc]\n[ 1391.699229] ? bnx2fc_l2_rcv_thread+0xb7/0x3a0 [bnx2fc]\n[ 1391.699240] bnx2fc_l2_rcv_thread+0x1af/0x3a0 [bnx2fc]\n[ 1391.699250] ? bnx2fc_ulp_init+0xc0/0xc0 [bnx2fc]\n[ 1391.699258] kthread+0x364/0x420\n[ 1391.699263] ? _raw_spin_unlock_irq+0x24/0x50\n[ 1391.699268] ? set_kthread_struct+0x100/0x100\n[ 1391.699273] ret_from_fork+0x22/0x30\n\nRestore the old get_cpu/put_cpu code with some modifications to reduce the\nsize of the critical section.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-48715",
"url": "https://www.suse.com/security/cve/CVE-2022-48715"
},
{
"category": "external",
"summary": "SUSE Bug 1226621 for CVE-2022-48715",
"url": "https://bugzilla.suse.com/1226621"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.6,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "low"
}
],
"title": "CVE-2022-48715"
},
{
"cve": "CVE-2022-48722",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-48722"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ieee802154: ca8210: Stop leaking skb\u0027s\n\nUpon error the ieee802154_xmit_complete() helper is not called. Only\nieee802154_wake_queue() is called manually. We then leak the skb\nstructure.\n\nFree the skb structure upon error before returning.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-48722",
"url": "https://www.suse.com/security/cve/CVE-2022-48722"
},
{
"category": "external",
"summary": "SUSE Bug 1226619 for CVE-2022-48722",
"url": "https://bugzilla.suse.com/1226619"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2022-48722"
},
{
"cve": "CVE-2022-48732",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-48732"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/nouveau: fix off by one in BIOS boundary checking\n\nBounds checking when parsing init scripts embedded in the BIOS reject\naccess to the last byte. This causes driver initialization to fail on\nApple eMac\u0027s with GeForce 2 MX GPUs, leaving the system with no working\nconsole.\n\nThis is probably only seen on OpenFirmware machines like PowerPC Macs\nbecause the BIOS image provided by OF is only the used parts of the ROM,\nnot a power-of-two blocks read from PCI directly so PCs always have\nempty bytes at the end that are never accessed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-48732",
"url": "https://www.suse.com/security/cve/CVE-2022-48732"
},
{
"category": "external",
"summary": "SUSE Bug 1226716 for CVE-2022-48732",
"url": "https://bugzilla.suse.com/1226716"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2022-48732"
},
{
"cve": "CVE-2022-48733",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-48733"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix use-after-free after failure to create a snapshot\n\nAt ioctl.c:create_snapshot(), we allocate a pending snapshot structure and\nthen attach it to the transaction\u0027s list of pending snapshots. After that\nwe call btrfs_commit_transaction(), and if that returns an error we jump\nto \u0027fail\u0027 label, where we kfree() the pending snapshot structure. This can\nresult in a later use-after-free of the pending snapshot:\n\n1) We allocated the pending snapshot and added it to the transaction\u0027s\n list of pending snapshots;\n\n2) We call btrfs_commit_transaction(), and it fails either at the first\n call to btrfs_run_delayed_refs() or btrfs_start_dirty_block_groups().\n In both cases, we don\u0027t abort the transaction and we release our\n transaction handle. We jump to the \u0027fail\u0027 label and free the pending\n snapshot structure. We return with the pending snapshot still in the\n transaction\u0027s list;\n\n3) Another task commits the transaction. This time there\u0027s no error at\n all, and then during the transaction commit it accesses a pointer\n to the pending snapshot structure that the snapshot creation task\n has already freed, resulting in a user-after-free.\n\nThis issue could actually be detected by smatch, which produced the\nfollowing warning:\n\n fs/btrfs/ioctl.c:843 create_snapshot() warn: \u0027\u0026pending_snapshot-\u003elist\u0027 not removed from list\n\nSo fix this by not having the snapshot creation ioctl directly add the\npending snapshot to the transaction\u0027s list. Instead add the pending\nsnapshot to the transaction handle, and then at btrfs_commit_transaction()\nwe add the snapshot to the list only when we can guarantee that any error\nreturned after that point will result in a transaction abort, in which\ncase the ioctl code can safely free the pending snapshot and no one can\naccess it anymore.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-48733",
"url": "https://www.suse.com/security/cve/CVE-2022-48733"
},
{
"category": "external",
"summary": "SUSE Bug 1226718 for CVE-2022-48733",
"url": "https://bugzilla.suse.com/1226718"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2022-48733"
},
{
"cve": "CVE-2022-48740",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-48740"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nselinux: fix double free of cond_list on error paths\n\nOn error path from cond_read_list() and duplicate_policydb_cond_list()\nthe cond_list_destroy() gets called a second time in caller functions,\nresulting in NULL pointer deref. Fix this by resetting the\ncond_list_len to 0 in cond_list_destroy(), making subsequent calls a\nnoop.\n\nAlso consistently reset the cond_list pointer to NULL after freeing.\n\n[PM: fix line lengths in the description]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-48740",
"url": "https://www.suse.com/security/cve/CVE-2022-48740"
},
{
"category": "external",
"summary": "SUSE Bug 1226699 for CVE-2022-48740",
"url": "https://bugzilla.suse.com/1226699"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2022-48740"
},
{
"cve": "CVE-2022-48743",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-48743"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: amd-xgbe: Fix skb data length underflow\n\nThere will be BUG_ON() triggered in include/linux/skbuff.h leading to\nintermittent kernel panic, when the skb length underflow is detected.\n\nFix this by dropping the packet if such length underflows are seen\nbecause of inconsistencies in the hardware descriptors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-48743",
"url": "https://www.suse.com/security/cve/CVE-2022-48743"
},
{
"category": "external",
"summary": "SUSE Bug 1226705 for CVE-2022-48743",
"url": "https://bugzilla.suse.com/1226705"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2022-48743"
},
{
"cve": "CVE-2022-48754",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-48754"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nphylib: fix potential use-after-free\n\nCommit bafbdd527d56 (\"phylib: Add device reset GPIO support\") added call\nto phy_device_reset(phydev) after the put_device() call in phy_detach().\n\nThe comment before the put_device() call says that the phydev might go\naway with put_device().\n\nFix potential use-after-free by calling phy_device_reset() before\nput_device().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-48754",
"url": "https://www.suse.com/security/cve/CVE-2022-48754"
},
{
"category": "external",
"summary": "SUSE Bug 1226692 for CVE-2022-48754",
"url": "https://bugzilla.suse.com/1226692"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2022-48754"
},
{
"cve": "CVE-2022-48756",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-48756"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm/dsi: invalid parameter check in msm_dsi_phy_enable\n\nThe function performs a check on the \"phy\" input parameter, however, it\nis used before the check.\n\nInitialize the \"dev\" variable after the sanity check to avoid a possible\nNULL pointer dereference.\n\nAddresses-Coverity-ID: 1493860 (\"Null pointer dereference\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-48756",
"url": "https://www.suse.com/security/cve/CVE-2022-48756"
},
{
"category": "external",
"summary": "SUSE Bug 1226698 for CVE-2022-48756",
"url": "https://bugzilla.suse.com/1226698"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2022-48756"
},
{
"cve": "CVE-2022-48758",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-48758"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put()\n\nThe bnx2fc_destroy() functions are removing the interface before calling\ndestroy_work. This results multiple WARNings from sysfs_remove_group() as\nthe controller rport device attributes are removed too early.\n\nReplace the fcoe_port\u0027s destroy_work queue. It\u0027s not needed.\n\nThe problem is easily reproducible with the following steps.\n\nExample:\n\n $ dmesg -w \u0026\n $ systemctl enable --now fcoe\n $ fipvlan -s -c ens2f1\n $ fcoeadm -d ens2f1.802\n [ 583.464488] host2: libfc: Link down on port (7500a1)\n [ 583.472651] bnx2fc: 7500a1 - rport not created Yet!!\n [ 583.490468] ------------[ cut here ]------------\n [ 583.538725] sysfs group \u0027power\u0027 not found for kobject \u0027rport-2:0-0\u0027\n [ 583.568814] WARNING: CPU: 3 PID: 192 at fs/sysfs/group.c:279 sysfs_remove_group+0x6f/0x80\n [ 583.607130] Modules linked in: dm_service_time 8021q garp mrp stp llc bnx2fc cnic uio rpcsec_gss_krb5 auth_rpcgss nfsv4 ...\n [ 583.942994] CPU: 3 PID: 192 Comm: kworker/3:2 Kdump: loaded Not tainted 5.14.0-39.el9.x86_64 #1\n [ 583.984105] Hardware name: HP ProLiant DL120 G7, BIOS J01 07/01/2013\n [ 584.016535] Workqueue: fc_wq_2 fc_rport_final_delete [scsi_transport_fc]\n [ 584.050691] RIP: 0010:sysfs_remove_group+0x6f/0x80\n [ 584.074725] Code: ff 5b 48 89 ef 5d 41 5c e9 ee c0 ff ff 48 89 ef e8 f6 b8 ff ff eb d1 49 8b 14 24 48 8b 33 48 c7 c7 ...\n [ 584.162586] RSP: 0018:ffffb567c15afdc0 EFLAGS: 00010282\n [ 584.188225] RAX: 0000000000000000 RBX: ffffffff8eec4220 RCX: 0000000000000000\n [ 584.221053] RDX: ffff8c1586ce84c0 RSI: ffff8c1586cd7cc0 RDI: ffff8c1586cd7cc0\n [ 584.255089] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffb567c15afc00\n [ 584.287954] R10: ffffb567c15afbf8 R11: ffffffff8fbe7f28 R12: ffff8c1486326400\n [ 584.322356] R13: ffff8c1486326480 R14: ffff8c1483a4a000 R15: 0000000000000004\n [ 584.355379] FS: 0000000000000000(0000) GS:ffff8c1586cc0000(0000) knlGS:0000000000000000\n [ 584.394419] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n [ 584.421123] CR2: 00007fe95a6f7840 CR3: 0000000107674002 CR4: 00000000000606e0\n [ 584.454888] Call Trace:\n [ 584.466108] device_del+0xb2/0x3e0\n [ 584.481701] device_unregister+0x13/0x60\n [ 584.501306] bsg_unregister_queue+0x5b/0x80\n [ 584.522029] bsg_remove_queue+0x1c/0x40\n [ 584.541884] fc_rport_final_delete+0xf3/0x1d0 [scsi_transport_fc]\n [ 584.573823] process_one_work+0x1e3/0x3b0\n [ 584.592396] worker_thread+0x50/0x3b0\n [ 584.609256] ? rescuer_thread+0x370/0x370\n [ 584.628877] kthread+0x149/0x170\n [ 584.643673] ? set_kthread_struct+0x40/0x40\n [ 584.662909] ret_from_fork+0x22/0x30\n [ 584.680002] ---[ end trace 53575ecefa942ece ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-48758",
"url": "https://www.suse.com/security/cve/CVE-2022-48758"
},
{
"category": "external",
"summary": "SUSE Bug 1226708 for CVE-2022-48758",
"url": "https://bugzilla.suse.com/1226708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2022-48758"
},
{
"cve": "CVE-2022-48759",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-48759"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrpmsg: char: Fix race between the release of rpmsg_ctrldev and cdev\n\nstruct rpmsg_ctrldev contains a struct cdev. The current code frees\nthe rpmsg_ctrldev struct in rpmsg_ctrldev_release_device(), but the\ncdev is a managed object, therefore its release is not predictable\nand the rpmsg_ctrldev could be freed before the cdev is entirely\nreleased, as in the backtrace below.\n\n[ 93.625603] ODEBUG: free active (active state 0) object type: timer_list hint: delayed_work_timer_fn+0x0/0x7c\n[ 93.636115] WARNING: CPU: 0 PID: 12 at lib/debugobjects.c:488 debug_print_object+0x13c/0x1b0\n[ 93.644799] Modules linked in: veth xt_cgroup xt_MASQUERADE rfcomm algif_hash algif_skcipher af_alg uinput ip6table_nat fuse uvcvideo videobuf2_vmalloc venus_enc venus_dec videobuf2_dma_contig hci_uart btandroid btqca snd_soc_rt5682_i2c bluetooth qcom_spmi_temp_alarm snd_soc_rt5682v\n[ 93.715175] CPU: 0 PID: 12 Comm: kworker/0:1 Tainted: G B 5.4.163-lockdep #26\n[ 93.723855] Hardware name: Google Lazor (rev3 - 8) with LTE (DT)\n[ 93.730055] Workqueue: events kobject_delayed_cleanup\n[ 93.735271] pstate: 60c00009 (nZCv daif +PAN +UAO)\n[ 93.740216] pc : debug_print_object+0x13c/0x1b0\n[ 93.744890] lr : debug_print_object+0x13c/0x1b0\n[ 93.749555] sp : ffffffacf5bc7940\n[ 93.752978] x29: ffffffacf5bc7940 x28: dfffffd000000000\n[ 93.758448] x27: ffffffacdb11a800 x26: dfffffd000000000\n[ 93.763916] x25: ffffffd0734f856c x24: dfffffd000000000\n[ 93.769389] x23: 0000000000000000 x22: ffffffd0733c35b0\n[ 93.774860] x21: ffffffd0751994a0 x20: ffffffd075ec27c0\n[ 93.780338] x19: ffffffd075199100 x18: 00000000000276e0\n[ 93.785814] x17: 0000000000000000 x16: dfffffd000000000\n[ 93.791291] x15: ffffffffffffffff x14: 6e6968207473696c\n[ 93.796768] x13: 0000000000000000 x12: ffffffd075e2b000\n[ 93.802244] x11: 0000000000000001 x10: 0000000000000000\n[ 93.807723] x9 : d13400dff1921900 x8 : d13400dff1921900\n[ 93.813200] x7 : 0000000000000000 x6 : 0000000000000000\n[ 93.818676] x5 : 0000000000000080 x4 : 0000000000000000\n[ 93.824152] x3 : ffffffd0732a0fa4 x2 : 0000000000000001\n[ 93.829628] x1 : ffffffacf5bc7580 x0 : 0000000000000061\n[ 93.835104] Call trace:\n[ 93.837644] debug_print_object+0x13c/0x1b0\n[ 93.841963] __debug_check_no_obj_freed+0x25c/0x3c0\n[ 93.846987] debug_check_no_obj_freed+0x18/0x20\n[ 93.851669] slab_free_freelist_hook+0xbc/0x1e4\n[ 93.856346] kfree+0xfc/0x2f4\n[ 93.859416] rpmsg_ctrldev_release_device+0x78/0xb8\n[ 93.864445] device_release+0x84/0x168\n[ 93.868310] kobject_cleanup+0x12c/0x298\n[ 93.872356] kobject_delayed_cleanup+0x10/0x18\n[ 93.876948] process_one_work+0x578/0x92c\n[ 93.881086] worker_thread+0x804/0xcf8\n[ 93.884963] kthread+0x2a8/0x314\n[ 93.888303] ret_from_fork+0x10/0x18\n\nThe cdev_device_add/del() API was created to address this issue (see\ncommit \u0027233ed09d7fda (\"chardev: add helper function to register char\ndevs with a struct device\")\u0027), use it instead of cdev add/del().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-48759",
"url": "https://www.suse.com/security/cve/CVE-2022-48759"
},
{
"category": "external",
"summary": "SUSE Bug 1226711 for CVE-2022-48759",
"url": "https://bugzilla.suse.com/1226711"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2022-48759"
},
{
"cve": "CVE-2022-48760",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-48760"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nUSB: core: Fix hang in usb_kill_urb by adding memory barriers\n\nThe syzbot fuzzer has identified a bug in which processes hang waiting\nfor usb_kill_urb() to return. It turns out the issue is not unlinking\nthe URB; that works just fine. Rather, the problem arises when the\nwakeup notification that the URB has completed is not received.\n\nThe reason is memory-access ordering on SMP systems. In outline form,\nusb_kill_urb() and __usb_hcd_giveback_urb() operating concurrently on\ndifferent CPUs perform the following actions:\n\nCPU 0\t\t\t\t\tCPU 1\n----------------------------\t\t---------------------------------\nusb_kill_urb():\t\t\t\t__usb_hcd_giveback_urb():\n ...\t\t\t\t\t ...\n atomic_inc(\u0026urb-\u003ereject);\t\t atomic_dec(\u0026urb-\u003euse_count);\n ...\t\t\t\t\t ...\n wait_event(usb_kill_urb_queue,\n\tatomic_read(\u0026urb-\u003euse_count) == 0);\n\t\t\t\t\t if (atomic_read(\u0026urb-\u003ereject))\n\t\t\t\t\t\twake_up(\u0026usb_kill_urb_queue);\n\nConfining your attention to urb-\u003ereject and urb-\u003euse_count, you can\nsee that the overall pattern of accesses on CPU 0 is:\n\n\twrite urb-\u003ereject, then read urb-\u003euse_count;\n\nwhereas the overall pattern of accesses on CPU 1 is:\n\n\twrite urb-\u003euse_count, then read urb-\u003ereject.\n\nThis pattern is referred to in memory-model circles as SB (for \"Store\nBuffering\"), and it is well known that without suitable enforcement of\nthe desired order of accesses -- in the form of memory barriers -- it\nis entirely possible for one or both CPUs to execute their reads ahead\nof their writes. The end result will be that sometimes CPU 0 sees the\nold un-decremented value of urb-\u003euse_count while CPU 1 sees the old\nun-incremented value of urb-\u003ereject. Consequently CPU 0 ends up on\nthe wait queue and never gets woken up, leading to the observed hang\nin usb_kill_urb().\n\nThe same pattern of accesses occurs in usb_poison_urb() and the\nfailure pathway of usb_hcd_submit_urb().\n\nThe problem is fixed by adding suitable memory barriers. To provide\nproper memory-access ordering in the SB pattern, a full barrier is\nrequired on both CPUs. The atomic_inc() and atomic_dec() accesses\nthemselves don\u0027t provide any memory ordering, but since they are\npresent, we can use the optimized smp_mb__after_atomic() memory\nbarrier in the various routines to obtain the desired effect.\n\nThis patch adds the necessary memory barriers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-48760",
"url": "https://www.suse.com/security/cve/CVE-2022-48760"
},
{
"category": "external",
"summary": "SUSE Bug 1226712 for CVE-2022-48760",
"url": "https://bugzilla.suse.com/1226712"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2022-48760"
},
{
"cve": "CVE-2022-48761",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-48761"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: xhci-plat: fix crash when suspend if remote wake enable\n\nCrashed at i.mx8qm platform when suspend if enable remote wakeup\n\nInternal error: synchronous external abort: 96000210 [#1] PREEMPT SMP\nModules linked in:\nCPU: 2 PID: 244 Comm: kworker/u12:6 Not tainted 5.15.5-dirty #12\nHardware name: Freescale i.MX8QM MEK (DT)\nWorkqueue: events_unbound async_run_entry_fn\npstate: 600000c5 (nZCv daIF -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : xhci_disable_hub_port_wake.isra.62+0x60/0xf8\nlr : xhci_disable_hub_port_wake.isra.62+0x34/0xf8\nsp : ffff80001394bbf0\nx29: ffff80001394bbf0 x28: 0000000000000000 x27: ffff00081193b578\nx26: ffff00081193b570 x25: 0000000000000000 x24: 0000000000000000\nx23: ffff00081193a29c x22: 0000000000020001 x21: 0000000000000001\nx20: 0000000000000000 x19: ffff800014e90490 x18: 0000000000000000\nx17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000\nx14: 0000000000000000 x13: 0000000000000002 x12: 0000000000000000\nx11: 0000000000000000 x10: 0000000000000960 x9 : ffff80001394baa0\nx8 : ffff0008145d1780 x7 : ffff0008f95b8e80 x6 : 000000001853b453\nx5 : 0000000000000496 x4 : 0000000000000000 x3 : ffff00081193a29c\nx2 : 0000000000000001 x1 : 0000000000000000 x0 : ffff000814591620\nCall trace:\n xhci_disable_hub_port_wake.isra.62+0x60/0xf8\n xhci_suspend+0x58/0x510\n xhci_plat_suspend+0x50/0x78\n platform_pm_suspend+0x2c/0x78\n dpm_run_callback.isra.25+0x50/0xe8\n __device_suspend+0x108/0x3c0\n\nThe basic flow:\n\t1. run time suspend call xhci_suspend, xhci parent devices gate the clock.\n 2. echo mem \u003e/sys/power/state, system _device_suspend call xhci_suspend\n 3. xhci_suspend call xhci_disable_hub_port_wake, which access register,\n\t but clock already gated by run time suspend.\n\nThis problem was hidden by power domain driver, which call run time resume before it.\n\nBut the below commit remove it and make this issue happen.\n\tcommit c1df456d0f06e (\"PM: domains: Don\u0027t runtime resume devices at genpd_prepare()\")\n\nThis patch call run time resume before suspend to make sure clock is on\nbefore access register.\n\nTesteb-by: Abel Vesa \u003cabel.vesa@nxp.com\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-48761",
"url": "https://www.suse.com/security/cve/CVE-2022-48761"
},
{
"category": "external",
"summary": "SUSE Bug 1226701 for CVE-2022-48761",
"url": "https://bugzilla.suse.com/1226701"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2022-48761"
},
{
"cve": "CVE-2022-48771",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-48771"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vmwgfx: Fix stale file descriptors on failed usercopy\n\nA failing usercopy of the fence_rep object will lead to a stale entry in\nthe file descriptor table as put_unused_fd() won\u0027t release it. This\nenables userland to refer to a dangling \u0027file\u0027 object through that still\nvalid file descriptor, leading to all kinds of use-after-free\nexploitation scenarios.\n\nFix this by deferring the call to fd_install() until after the usercopy\nhas succeeded.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-48771",
"url": "https://www.suse.com/security/cve/CVE-2022-48771"
},
{
"category": "external",
"summary": "SUSE Bug 1226732 for CVE-2022-48771",
"url": "https://bugzilla.suse.com/1226732"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2022-48771"
},
{
"cve": "CVE-2022-48772",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-48772"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: lgdt3306a: Add a check against null-pointer-def\n\nThe driver should check whether the client provides the platform_data.\n\nThe following log reveals it:\n\n[ 29.610324] BUG: KASAN: null-ptr-deref in kmemdup+0x30/0x40\n[ 29.610730] Read of size 40 at addr 0000000000000000 by task bash/414\n[ 29.612820] Call Trace:\n[ 29.613030] \u003cTASK\u003e\n[ 29.613201] dump_stack_lvl+0x56/0x6f\n[ 29.613496] ? kmemdup+0x30/0x40\n[ 29.613754] print_report.cold+0x494/0x6b7\n[ 29.614082] ? kmemdup+0x30/0x40\n[ 29.614340] kasan_report+0x8a/0x190\n[ 29.614628] ? kmemdup+0x30/0x40\n[ 29.614888] kasan_check_range+0x14d/0x1d0\n[ 29.615213] memcpy+0x20/0x60\n[ 29.615454] kmemdup+0x30/0x40\n[ 29.615700] lgdt3306a_probe+0x52/0x310\n[ 29.616339] i2c_device_probe+0x951/0xa90",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-48772",
"url": "https://www.suse.com/security/cve/CVE-2022-48772"
},
{
"category": "external",
"summary": "SUSE Bug 1226976 for CVE-2022-48772",
"url": "https://bugzilla.suse.com/1226976"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2022-48772"
},
{
"cve": "CVE-2023-24023",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-24023"
}
],
"notes": [
{
"category": "general",
"text": "Bluetooth BR/EDR devices with Secure Simple Pairing and Secure Connections pairing in Bluetooth Core Specification 4.2 through 5.4 allow certain man-in-the-middle attacks that force a short key length, and might lead to discovery of the encryption key and live injection, aka BLUFFS.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-24023",
"url": "https://www.suse.com/security/cve/CVE-2023-24023"
},
{
"category": "external",
"summary": "SUSE Bug 1218148 for CVE-2023-24023",
"url": "https://bugzilla.suse.com/1218148"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2023-24023"
},
{
"cve": "CVE-2023-52622",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52622"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: avoid online resizing failures due to oversized flex bg\n\nWhen we online resize an ext4 filesystem with a oversized flexbg_size,\n\n mkfs.ext4 -F -G 67108864 $dev -b 4096 100M\n mount $dev $dir\n resize2fs $dev 16G\n\nthe following WARN_ON is triggered:\n==================================================================\nWARNING: CPU: 0 PID: 427 at mm/page_alloc.c:4402 __alloc_pages+0x411/0x550\nModules linked in: sg(E)\nCPU: 0 PID: 427 Comm: resize2fs Tainted: G E 6.6.0-rc5+ #314\nRIP: 0010:__alloc_pages+0x411/0x550\nCall Trace:\n \u003cTASK\u003e\n __kmalloc_large_node+0xa2/0x200\n __kmalloc+0x16e/0x290\n ext4_resize_fs+0x481/0xd80\n __ext4_ioctl+0x1616/0x1d90\n ext4_ioctl+0x12/0x20\n __x64_sys_ioctl+0xf0/0x150\n do_syscall_64+0x3b/0x90\n==================================================================\n\nThis is because flexbg_size is too large and the size of the new_group_data\narray to be allocated exceeds MAX_ORDER. Currently, the minimum value of\nMAX_ORDER is 8, the minimum value of PAGE_SIZE is 4096, the corresponding\nmaximum number of groups that can be allocated is:\n\n (PAGE_SIZE \u003c\u003c MAX_ORDER) / sizeof(struct ext4_new_group_data) ~ 21845\n\nAnd the value that is down-aligned to the power of 2 is 16384. Therefore,\nthis value is defined as MAX_RESIZE_BG, and the number of groups added\neach time does not exceed this value during resizing, and is added multiple\ntimes to complete the online resizing. The difference is that the metadata\nin a flex_bg may be more dispersed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52622",
"url": "https://www.suse.com/security/cve/CVE-2023-52622"
},
{
"category": "external",
"summary": "SUSE Bug 1222080 for CVE-2023-52622",
"url": "https://bugzilla.suse.com/1222080"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2023-52622"
},
{
"cve": "CVE-2023-52675",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52675"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/imc-pmu: Add a null pointer check in update_events_in_group()\n\nkasprintf() returns a pointer to dynamically allocated memory\nwhich can be NULL upon failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52675",
"url": "https://www.suse.com/security/cve/CVE-2023-52675"
},
{
"category": "external",
"summary": "SUSE Bug 1224504 for CVE-2023-52675",
"url": "https://bugzilla.suse.com/1224504"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2023-52675"
},
{
"cve": "CVE-2023-52737",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52737"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: lock the inode in shared mode before starting fiemap\n\nCurrently fiemap does not take the inode\u0027s lock (VFS lock), it only locks\na file range in the inode\u0027s io tree. This however can lead to a deadlock\nif we have a concurrent fsync on the file and fiemap code triggers a fault\nwhen accessing the user space buffer with fiemap_fill_next_extent(). The\ndeadlock happens on the inode\u0027s i_mmap_lock semaphore, which is taken both\nby fsync and btrfs_page_mkwrite(). This deadlock was recently reported by\nsyzbot and triggers a trace like the following:\n\n task:syz-executor361 state:D stack:20264 pid:5668 ppid:5119 flags:0x00004004\n Call Trace:\n \u003cTASK\u003e\n context_switch kernel/sched/core.c:5293 [inline]\n __schedule+0x995/0xe20 kernel/sched/core.c:6606\n schedule+0xcb/0x190 kernel/sched/core.c:6682\n wait_on_state fs/btrfs/extent-io-tree.c:707 [inline]\n wait_extent_bit+0x577/0x6f0 fs/btrfs/extent-io-tree.c:751\n lock_extent+0x1c2/0x280 fs/btrfs/extent-io-tree.c:1742\n find_lock_delalloc_range+0x4e6/0x9c0 fs/btrfs/extent_io.c:488\n writepage_delalloc+0x1ef/0x540 fs/btrfs/extent_io.c:1863\n __extent_writepage+0x736/0x14e0 fs/btrfs/extent_io.c:2174\n extent_write_cache_pages+0x983/0x1220 fs/btrfs/extent_io.c:3091\n extent_writepages+0x219/0x540 fs/btrfs/extent_io.c:3211\n do_writepages+0x3c3/0x680 mm/page-writeback.c:2581\n filemap_fdatawrite_wbc+0x11e/0x170 mm/filemap.c:388\n __filemap_fdatawrite_range mm/filemap.c:421 [inline]\n filemap_fdatawrite_range+0x175/0x200 mm/filemap.c:439\n btrfs_fdatawrite_range fs/btrfs/file.c:3850 [inline]\n start_ordered_ops fs/btrfs/file.c:1737 [inline]\n btrfs_sync_file+0x4ff/0x1190 fs/btrfs/file.c:1839\n generic_write_sync include/linux/fs.h:2885 [inline]\n btrfs_do_write_iter+0xcd3/0x1280 fs/btrfs/file.c:1684\n call_write_iter include/linux/fs.h:2189 [inline]\n new_sync_write fs/read_write.c:491 [inline]\n vfs_write+0x7dc/0xc50 fs/read_write.c:584\n ksys_write+0x177/0x2a0 fs/read_write.c:637\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x3d/0xb0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n RIP: 0033:0x7f7d4054e9b9\n RSP: 002b:00007f7d404fa2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001\n RAX: ffffffffffffffda RBX: 00007f7d405d87a0 RCX: 00007f7d4054e9b9\n RDX: 0000000000000090 RSI: 0000000020000000 RDI: 0000000000000006\n RBP: 00007f7d405a51d0 R08: 0000000000000000 R09: 0000000000000000\n R10: 0000000000000000 R11: 0000000000000246 R12: 61635f65646f6e69\n R13: 65646f7475616f6e R14: 7261637369646f6e R15: 00007f7d405d87a8\n \u003c/TASK\u003e\n INFO: task syz-executor361:5697 blocked for more than 145 seconds.\n Not tainted 6.2.0-rc3-syzkaller-00376-g7c6984405241 #0\n \"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\n task:syz-executor361 state:D stack:21216 pid:5697 ppid:5119 flags:0x00004004\n Call Trace:\n \u003cTASK\u003e\n context_switch kernel/sched/core.c:5293 [inline]\n __schedule+0x995/0xe20 kernel/sched/core.c:6606\n schedule+0xcb/0x190 kernel/sched/core.c:6682\n rwsem_down_read_slowpath+0x5f9/0x930 kernel/locking/rwsem.c:1095\n __down_read_common+0x54/0x2a0 kernel/locking/rwsem.c:1260\n btrfs_page_mkwrite+0x417/0xc80 fs/btrfs/inode.c:8526\n do_page_mkwrite+0x19e/0x5e0 mm/memory.c:2947\n wp_page_shared+0x15e/0x380 mm/memory.c:3295\n handle_pte_fault mm/memory.c:4949 [inline]\n __handle_mm_fault mm/memory.c:5073 [inline]\n handle_mm_fault+0x1b79/0x26b0 mm/memory.c:5219\n do_user_addr_fault+0x69b/0xcb0 arch/x86/mm/fault.c:1428\n handle_page_fault arch/x86/mm/fault.c:1519 [inline]\n exc_page_fault+0x7a/0x110 arch/x86/mm/fault.c:1575\n asm_exc_page_fault+0x22/0x30 arch/x86/include/asm/idtentry.h:570\n RIP: 0010:copy_user_short_string+0xd/0x40 arch/x86/lib/copy_user_64.S:233\n Code: 74 0a 89 (...)\n RSP: 0018:ffffc9000570f330 EFLAGS: 000502\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52737",
"url": "https://www.suse.com/security/cve/CVE-2023-52737"
},
{
"category": "external",
"summary": "SUSE Bug 1225484 for CVE-2023-52737",
"url": "https://bugzilla.suse.com/1225484"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2023-52737"
},
{
"cve": "CVE-2023-52752",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52752"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix use-after-free bug in cifs_debug_data_proc_show()\n\nSkip SMB sessions that are being teared down\n(e.g. @ses-\u003eses_status == SES_EXITING) in cifs_debug_data_proc_show()\nto avoid use-after-free in @ses.\n\nThis fixes the following GPF when reading from /proc/fs/cifs/DebugData\nwhile mounting and umounting\n\n [ 816.251274] general protection fault, probably for non-canonical\n address 0x6b6b6b6b6b6b6d81: 0000 [#1] PREEMPT SMP NOPTI\n ...\n [ 816.260138] Call Trace:\n [ 816.260329] \u003cTASK\u003e\n [ 816.260499] ? die_addr+0x36/0x90\n [ 816.260762] ? exc_general_protection+0x1b3/0x410\n [ 816.261126] ? asm_exc_general_protection+0x26/0x30\n [ 816.261502] ? cifs_debug_tcon+0xbd/0x240 [cifs]\n [ 816.261878] ? cifs_debug_tcon+0xab/0x240 [cifs]\n [ 816.262249] cifs_debug_data_proc_show+0x516/0xdb0 [cifs]\n [ 816.262689] ? seq_read_iter+0x379/0x470\n [ 816.262995] seq_read_iter+0x118/0x470\n [ 816.263291] proc_reg_read_iter+0x53/0x90\n [ 816.263596] ? srso_alias_return_thunk+0x5/0x7f\n [ 816.263945] vfs_read+0x201/0x350\n [ 816.264211] ksys_read+0x75/0x100\n [ 816.264472] do_syscall_64+0x3f/0x90\n [ 816.264750] entry_SYSCALL_64_after_hwframe+0x6e/0xd8\n [ 816.265135] RIP: 0033:0x7fd5e669d381",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52752",
"url": "https://www.suse.com/security/cve/CVE-2023-52752"
},
{
"category": "external",
"summary": "SUSE Bug 1225487 for CVE-2023-52752",
"url": "https://bugzilla.suse.com/1225487"
},
{
"category": "external",
"summary": "SUSE Bug 1225819 for CVE-2023-52752",
"url": "https://bugzilla.suse.com/1225819"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "important"
}
],
"title": "CVE-2023-52752"
},
{
"cve": "CVE-2023-52754",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52754"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: imon: fix access to invalid resource for the second interface\n\nimon driver probes two USB interfaces, and at the probe of the second\ninterface, the driver assumes blindly that the first interface got\nbound with the same imon driver. It\u0027s usually true, but it\u0027s still\npossible that the first interface is bound with another driver via a\nmalformed descriptor. Then it may lead to a memory corruption, as\nspotted by syzkaller; imon driver accesses the data from drvdata as\nstruct imon_context object although it\u0027s a completely different one\nthat was assigned by another driver.\n\nThis patch adds a sanity check -- whether the first interface is\nreally bound with the imon driver or not -- for avoiding the problem\nabove at the probe time.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52754",
"url": "https://www.suse.com/security/cve/CVE-2023-52754"
},
{
"category": "external",
"summary": "SUSE Bug 1225490 for CVE-2023-52754",
"url": "https://bugzilla.suse.com/1225490"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2023-52754"
},
{
"cve": "CVE-2023-52757",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52757"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix potential deadlock when releasing mids\n\nAll release_mid() callers seem to hold a reference of @mid so there is\nno need to call kref_put(\u0026mid-\u003erefcount, __release_mid) under\n@server-\u003emid_lock spinlock. If they don\u0027t, then an use-after-free bug\nwould have occurred anyways.\n\nBy getting rid of such spinlock also fixes a potential deadlock as\nshown below\n\nCPU 0 CPU 1\n------------------------------------------------------------------\ncifs_demultiplex_thread() cifs_debug_data_proc_show()\n release_mid()\n spin_lock(\u0026server-\u003emid_lock);\n spin_lock(\u0026cifs_tcp_ses_lock)\n\t\t\t\t spin_lock(\u0026server-\u003emid_lock)\n __release_mid()\n smb2_find_smb_tcon()\n spin_lock(\u0026cifs_tcp_ses_lock) *deadlock*",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52757",
"url": "https://www.suse.com/security/cve/CVE-2023-52757"
},
{
"category": "external",
"summary": "SUSE Bug 1225548 for CVE-2023-52757",
"url": "https://bugzilla.suse.com/1225548"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2023-52757"
},
{
"cve": "CVE-2023-52762",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52762"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio-blk: fix implicit overflow on virtio_max_dma_size\n\nThe following codes have an implicit conversion from size_t to u32:\n(u32)max_size = (size_t)virtio_max_dma_size(vdev);\n\nThis may lead overflow, Ex (size_t)4G -\u003e (u32)0. Once\nvirtio_max_dma_size() has a larger size than U32_MAX, use U32_MAX\ninstead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52762",
"url": "https://www.suse.com/security/cve/CVE-2023-52762"
},
{
"category": "external",
"summary": "SUSE Bug 1225573 for CVE-2023-52762",
"url": "https://bugzilla.suse.com/1225573"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2023-52762"
},
{
"cve": "CVE-2023-52764",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52764"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: gspca: cpia1: shift-out-of-bounds in set_flicker\n\nSyzkaller reported the following issue:\nUBSAN: shift-out-of-bounds in drivers/media/usb/gspca/cpia1.c:1031:27\nshift exponent 245 is too large for 32-bit type \u0027int\u0027\n\nWhen the value of the variable \"sd-\u003eparams.exposure.gain\" exceeds the\nnumber of bits in an integer, a shift-out-of-bounds error is reported. It\nis triggered because the variable \"currentexp\" cannot be left-shifted by\nmore than the number of bits in an integer. In order to avoid invalid\nrange during left-shift, the conditional expression is added.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52764",
"url": "https://www.suse.com/security/cve/CVE-2023-52764"
},
{
"category": "external",
"summary": "SUSE Bug 1225571 for CVE-2023-52764",
"url": "https://bugzilla.suse.com/1225571"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2023-52764"
},
{
"cve": "CVE-2023-52784",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52784"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbonding: stop the device in bond_setup_by_slave()\n\nCommit 9eed321cde22 (\"net: lapbether: only support ethernet devices\")\nhas been able to keep syzbot away from net/lapb, until today.\n\nIn the following splat [1], the issue is that a lapbether device has\nbeen created on a bonding device without members. Then adding a non\nARPHRD_ETHER member forced the bonding master to change its type.\n\nThe fix is to make sure we call dev_close() in bond_setup_by_slave()\nso that the potential linked lapbether devices (or any other devices\nhaving assumptions on the physical device) are removed.\n\nA similar bug has been addressed in commit 40baec225765\n(\"bonding: fix panic on non-ARPHRD_ETHER enslave failure\")\n\n[1]\nskbuff: skb_under_panic: text:ffff800089508810 len:44 put:40 head:ffff0000c78e7c00 data:ffff0000c78e7bea tail:0x16 end:0x140 dev:bond0\nkernel BUG at net/core/skbuff.c:192 !\nInternal error: Oops - BUG: 00000000f2000800 [#1] PREEMPT SMP\nModules linked in:\nCPU: 0 PID: 6007 Comm: syz-executor383 Not tainted 6.6.0-rc3-syzkaller-gbf6547d8715b #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023\npstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : skb_panic net/core/skbuff.c:188 [inline]\npc : skb_under_panic+0x13c/0x140 net/core/skbuff.c:202\nlr : skb_panic net/core/skbuff.c:188 [inline]\nlr : skb_under_panic+0x13c/0x140 net/core/skbuff.c:202\nsp : ffff800096a06aa0\nx29: ffff800096a06ab0 x28: ffff800096a06ba0 x27: dfff800000000000\nx26: ffff0000ce9b9b50 x25: 0000000000000016 x24: ffff0000c78e7bea\nx23: ffff0000c78e7c00 x22: 000000000000002c x21: 0000000000000140\nx20: 0000000000000028 x19: ffff800089508810 x18: ffff800096a06100\nx17: 0000000000000000 x16: ffff80008a629a3c x15: 0000000000000001\nx14: 1fffe00036837a32 x13: 0000000000000000 x12: 0000000000000000\nx11: 0000000000000201 x10: 0000000000000000 x9 : cb50b496c519aa00\nx8 : cb50b496c519aa00 x7 : 0000000000000001 x6 : 0000000000000001\nx5 : ffff800096a063b8 x4 : ffff80008e280f80 x3 : ffff8000805ad11c\nx2 : 0000000000000001 x1 : 0000000100000201 x0 : 0000000000000086\nCall trace:\nskb_panic net/core/skbuff.c:188 [inline]\nskb_under_panic+0x13c/0x140 net/core/skbuff.c:202\nskb_push+0xf0/0x108 net/core/skbuff.c:2446\nip6gre_header+0xbc/0x738 net/ipv6/ip6_gre.c:1384\ndev_hard_header include/linux/netdevice.h:3136 [inline]\nlapbeth_data_transmit+0x1c4/0x298 drivers/net/wan/lapbether.c:257\nlapb_data_transmit+0x8c/0xb0 net/lapb/lapb_iface.c:447\nlapb_transmit_buffer+0x178/0x204 net/lapb/lapb_out.c:149\nlapb_send_control+0x220/0x320 net/lapb/lapb_subr.c:251\n__lapb_disconnect_request+0x9c/0x17c net/lapb/lapb_iface.c:326\nlapb_device_event+0x288/0x4e0 net/lapb/lapb_iface.c:492\nnotifier_call_chain+0x1a4/0x510 kernel/notifier.c:93\nraw_notifier_call_chain+0x3c/0x50 kernel/notifier.c:461\ncall_netdevice_notifiers_info net/core/dev.c:1970 [inline]\ncall_netdevice_notifiers_extack net/core/dev.c:2008 [inline]\ncall_netdevice_notifiers net/core/dev.c:2022 [inline]\n__dev_close_many+0x1b8/0x3c4 net/core/dev.c:1508\ndev_close_many+0x1e0/0x470 net/core/dev.c:1559\ndev_close+0x174/0x250 net/core/dev.c:1585\nlapbeth_device_event+0x2e4/0x958 drivers/net/wan/lapbether.c:466\nnotifier_call_chain+0x1a4/0x510 kernel/notifier.c:93\nraw_notifier_call_chain+0x3c/0x50 kernel/notifier.c:461\ncall_netdevice_notifiers_info net/core/dev.c:1970 [inline]\ncall_netdevice_notifiers_extack net/core/dev.c:2008 [inline]\ncall_netdevice_notifiers net/core/dev.c:2022 [inline]\n__dev_close_many+0x1b8/0x3c4 net/core/dev.c:1508\ndev_close_many+0x1e0/0x470 net/core/dev.c:1559\ndev_close+0x174/0x250 net/core/dev.c:1585\nbond_enslave+0x2298/0x30cc drivers/net/bonding/bond_main.c:2332\nbond_do_ioctl+0x268/0xc64 drivers/net/bonding/bond_main.c:4539\ndev_ifsioc+0x754/0x9ac\ndev_ioctl+0x4d8/0xd34 net/core/dev_ioctl.c:786\nsock_do_ioctl+0x1d4/0x2d0 net/socket.c:1217\nsock_ioctl+0x4e8/0x834 net/socket.c:1322\nvfs_ioctl fs/ioctl.c:51 [inline]\n__do_\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52784",
"url": "https://www.suse.com/security/cve/CVE-2023-52784"
},
{
"category": "external",
"summary": "SUSE Bug 1224946 for CVE-2023-52784",
"url": "https://bugzilla.suse.com/1224946"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2023-52784"
},
{
"cve": "CVE-2023-52808",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52808"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: hisi_sas: Set debugfs_dir pointer to NULL after removing debugfs\n\nIf init debugfs failed during device registration due to memory allocation\nfailure, debugfs_remove_recursive() is called, after which debugfs_dir is\nnot set to NULL. debugfs_remove_recursive() will be called again during\ndevice removal. As a result, illegal pointer is accessed.\n\n[ 1665.467244] hisi_sas_v3_hw 0000:b4:02.0: failed to init debugfs!\n...\n[ 1669.836708] Unable to handle kernel NULL pointer dereference at virtual address 00000000000000a0\n[ 1669.872669] pc : down_write+0x24/0x70\n[ 1669.876315] lr : down_write+0x1c/0x70\n[ 1669.879961] sp : ffff000036f53a30\n[ 1669.883260] x29: ffff000036f53a30 x28: ffffa027c31549f8\n[ 1669.888547] x27: ffffa027c3140000 x26: 0000000000000000\n[ 1669.893834] x25: ffffa027bf37c270 x24: ffffa027bf37c270\n[ 1669.899122] x23: ffff0000095406b8 x22: ffff0000095406a8\n[ 1669.904408] x21: 0000000000000000 x20: ffffa027bf37c310\n[ 1669.909695] x19: 00000000000000a0 x18: ffff8027dcd86f10\n[ 1669.914982] x17: 0000000000000000 x16: 0000000000000000\n[ 1669.920268] x15: 0000000000000000 x14: ffffa0274014f870\n[ 1669.925555] x13: 0000000000000040 x12: 0000000000000228\n[ 1669.930842] x11: 0000000000000020 x10: 0000000000000bb0\n[ 1669.936129] x9 : ffff000036f537f0 x8 : ffff80273088ca10\n[ 1669.941416] x7 : 000000000000001d x6 : 00000000ffffffff\n[ 1669.946702] x5 : ffff000008a36310 x4 : ffff80273088be00\n[ 1669.951989] x3 : ffff000009513e90 x2 : 0000000000000000\n[ 1669.957276] x1 : 00000000000000a0 x0 : ffffffff00000001\n[ 1669.962563] Call trace:\n[ 1669.965000] down_write+0x24/0x70\n[ 1669.968301] debugfs_remove_recursive+0x5c/0x1b0\n[ 1669.972905] hisi_sas_debugfs_exit+0x24/0x30 [hisi_sas_main]\n[ 1669.978541] hisi_sas_v3_remove+0x130/0x150 [hisi_sas_v3_hw]\n[ 1669.984175] pci_device_remove+0x48/0xd8\n[ 1669.988082] device_release_driver_internal+0x1b4/0x250\n[ 1669.993282] device_release_driver+0x28/0x38\n[ 1669.997534] pci_stop_bus_device+0x84/0xb8\n[ 1670.001611] pci_stop_and_remove_bus_device_locked+0x24/0x40\n[ 1670.007244] remove_store+0xfc/0x140\n[ 1670.010802] dev_attr_store+0x44/0x60\n[ 1670.014448] sysfs_kf_write+0x58/0x80\n[ 1670.018095] kernfs_fop_write+0xe8/0x1f0\n[ 1670.022000] __vfs_write+0x60/0x190\n[ 1670.025472] vfs_write+0xac/0x1c0\n[ 1670.028771] ksys_write+0x6c/0xd8\n[ 1670.032071] __arm64_sys_write+0x24/0x30\n[ 1670.035977] el0_svc_common+0x78/0x130\n[ 1670.039710] el0_svc_handler+0x38/0x78\n[ 1670.043442] el0_svc+0x8/0xc\n\nTo fix this, set debugfs_dir to NULL after debugfs_remove_recursive().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52808",
"url": "https://www.suse.com/security/cve/CVE-2023-52808"
},
{
"category": "external",
"summary": "SUSE Bug 1225555 for CVE-2023-52808",
"url": "https://bugzilla.suse.com/1225555"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2023-52808"
},
{
"cve": "CVE-2023-52809",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52809"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: libfc: Fix potential NULL pointer dereference in fc_lport_ptp_setup()\n\nfc_lport_ptp_setup() did not check the return value of fc_rport_create()\nwhich can return NULL and would cause a NULL pointer dereference. Address\nthis issue by checking return value of fc_rport_create() and log error\nmessage on fc_rport_create() failed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52809",
"url": "https://www.suse.com/security/cve/CVE-2023-52809"
},
{
"category": "external",
"summary": "SUSE Bug 1225556 for CVE-2023-52809",
"url": "https://bugzilla.suse.com/1225556"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2023-52809"
},
{
"cve": "CVE-2023-52811",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52811"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: ibmvfc: Remove BUG_ON in the case of an empty event pool\n\nIn practice the driver should never send more commands than are allocated\nto a queue\u0027s event pool. In the unlikely event that this happens, the code\nasserts a BUG_ON, and in the case that the kernel is not configured to\ncrash on panic returns a junk event pointer from the empty event list\ncausing things to spiral from there. This BUG_ON is a historical artifact\nof the ibmvfc driver first being upstreamed, and it is well known now that\nthe use of BUG_ON is bad practice except in the most unrecoverable\nscenario. There is nothing about this scenario that prevents the driver\nfrom recovering and carrying on.\n\nRemove the BUG_ON in question from ibmvfc_get_event() and return a NULL\npointer in the case of an empty event pool. Update all call sites to\nibmvfc_get_event() to check for a NULL pointer and perfrom the appropriate\nfailure or recovery action.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52811",
"url": "https://www.suse.com/security/cve/CVE-2023-52811"
},
{
"category": "external",
"summary": "SUSE Bug 1225559 for CVE-2023-52811",
"url": "https://bugzilla.suse.com/1225559"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2023-52811"
},
{
"cve": "CVE-2023-52832",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52832"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mac80211: don\u0027t return unset power in ieee80211_get_tx_power()\n\nWe can get a UBSAN warning if ieee80211_get_tx_power() returns the\nINT_MIN value mac80211 internally uses for \"unset power level\".\n\n UBSAN: signed-integer-overflow in net/wireless/nl80211.c:3816:5\n -2147483648 * 100 cannot be represented in type \u0027int\u0027\n CPU: 0 PID: 20433 Comm: insmod Tainted: G WC OE\n Call Trace:\n dump_stack+0x74/0x92\n ubsan_epilogue+0x9/0x50\n handle_overflow+0x8d/0xd0\n __ubsan_handle_mul_overflow+0xe/0x10\n nl80211_send_iface+0x688/0x6b0 [cfg80211]\n [...]\n cfg80211_register_wdev+0x78/0xb0 [cfg80211]\n cfg80211_netdev_notifier_call+0x200/0x620 [cfg80211]\n [...]\n ieee80211_if_add+0x60e/0x8f0 [mac80211]\n ieee80211_register_hw+0xda5/0x1170 [mac80211]\n\nIn this case, simply return an error instead, to indicate\nthat no data is available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52832",
"url": "https://www.suse.com/security/cve/CVE-2023-52832"
},
{
"category": "external",
"summary": "SUSE Bug 1225577 for CVE-2023-52832",
"url": "https://bugzilla.suse.com/1225577"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2023-52832"
},
{
"cve": "CVE-2023-52834",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52834"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\natl1c: Work around the DMA RX overflow issue\n\nThis is based on alx driver commit 881d0327db37 (\"net: alx: Work around\nthe DMA RX overflow issue\").\n\nThe alx and atl1c drivers had RX overflow error which was why a custom\nallocator was created to avoid certain addresses. The simpler workaround\nthen created for alx driver, but not for atl1c due to lack of tester.\n\nInstead of using a custom allocator, check the allocated skb address and\nuse skb_reserve() to move away from problematic 0x...fc0 address.\n\nTested on AR8131 on Acer 4540.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52834",
"url": "https://www.suse.com/security/cve/CVE-2023-52834"
},
{
"category": "external",
"summary": "SUSE Bug 1225599 for CVE-2023-52834",
"url": "https://bugzilla.suse.com/1225599"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2023-52834"
},
{
"cve": "CVE-2023-52835",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52835"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf/core: Bail out early if the request AUX area is out of bound\n\nWhen perf-record with a large AUX area, e.g 4GB, it fails with:\n\n #perf record -C 0 -m ,4G -e arm_spe_0// -- sleep 1\n failed to mmap with 12 (Cannot allocate memory)\n\nand it reveals a WARNING with __alloc_pages():\n\n\t------------[ cut here ]------------\n\tWARNING: CPU: 44 PID: 17573 at mm/page_alloc.c:5568 __alloc_pages+0x1ec/0x248\n\tCall trace:\n\t __alloc_pages+0x1ec/0x248\n\t __kmalloc_large_node+0xc0/0x1f8\n\t __kmalloc_node+0x134/0x1e8\n\t rb_alloc_aux+0xe0/0x298\n\t perf_mmap+0x440/0x660\n\t mmap_region+0x308/0x8a8\n\t do_mmap+0x3c0/0x528\n\t vm_mmap_pgoff+0xf4/0x1b8\n\t ksys_mmap_pgoff+0x18c/0x218\n\t __arm64_sys_mmap+0x38/0x58\n\t invoke_syscall+0x50/0x128\n\t el0_svc_common.constprop.0+0x58/0x188\n\t do_el0_svc+0x34/0x50\n\t el0_svc+0x34/0x108\n\t el0t_64_sync_handler+0xb8/0xc0\n\t el0t_64_sync+0x1a4/0x1a8\n\n\u0027rb-\u003eaux_pages\u0027 allocated by kcalloc() is a pointer array which is used to\nmaintains AUX trace pages. The allocated page for this array is physically\ncontiguous (and virtually contiguous) with an order of 0..MAX_ORDER. If the\nsize of pointer array crosses the limitation set by MAX_ORDER, it reveals a\nWARNING.\n\nSo bail out early with -ENOMEM if the request AUX area is out of bound,\ne.g.:\n\n #perf record -C 0 -m ,4G -e arm_spe_0// -- sleep 1\n failed to mmap with 12 (Cannot allocate memory)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52835",
"url": "https://www.suse.com/security/cve/CVE-2023-52835"
},
{
"category": "external",
"summary": "SUSE Bug 1225602 for CVE-2023-52835",
"url": "https://bugzilla.suse.com/1225602"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "low"
}
],
"title": "CVE-2023-52835"
},
{
"cve": "CVE-2023-52843",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52843"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nllc: verify mac len before reading mac header\n\nLLC reads the mac header with eth_hdr without verifying that the skb\nhas an Ethernet header.\n\nSyzbot was able to enter llc_rcv on a tun device. Tun can insert\npackets without mac len and with user configurable skb-\u003eprotocol\n(passing a tun_pi header when not configuring IFF_NO_PI).\n\n BUG: KMSAN: uninit-value in llc_station_ac_send_test_r net/llc/llc_station.c:81 [inline]\n BUG: KMSAN: uninit-value in llc_station_rcv+0x6fb/0x1290 net/llc/llc_station.c:111\n llc_station_ac_send_test_r net/llc/llc_station.c:81 [inline]\n llc_station_rcv+0x6fb/0x1290 net/llc/llc_station.c:111\n llc_rcv+0xc5d/0x14a0 net/llc/llc_input.c:218\n __netif_receive_skb_one_core net/core/dev.c:5523 [inline]\n __netif_receive_skb+0x1a6/0x5a0 net/core/dev.c:5637\n netif_receive_skb_internal net/core/dev.c:5723 [inline]\n netif_receive_skb+0x58/0x660 net/core/dev.c:5782\n tun_rx_batched+0x3ee/0x980 drivers/net/tun.c:1555\n tun_get_user+0x54c5/0x69c0 drivers/net/tun.c:2002\n\nAdd a mac_len test before all three eth_hdr(skb) calls under net/llc.\n\nThere are further uses in include/net/llc_pdu.h. All these are\nprotected by a test skb-\u003eprotocol == ETH_P_802_2. Which does not\nprotect against this tun scenario.\n\nBut the mac_len test added in this patch in llc_fixup_skb will\nindirectly protect those too. That is called from llc_rcv before any\nother LLC code.\n\nIt is tempting to just add a blanket mac_len check in llc_rcv, but\nnot sure whether that could break valid LLC paths that do not assume\nan Ethernet header. 802.2 LLC may be used on top of non-802.3\nprotocols in principle. The below referenced commit shows that used\nto, on top of Token Ring.\n\nAt least one of the three eth_hdr uses goes back to before the start\nof git history. But the one that syzbot exercises is introduced in\nthis commit. That commit is old enough (2008), that effectively all\nstable kernels should receive this.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52843",
"url": "https://www.suse.com/security/cve/CVE-2023-52843"
},
{
"category": "external",
"summary": "SUSE Bug 1224951 for CVE-2023-52843",
"url": "https://bugzilla.suse.com/1224951"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2023-52843"
},
{
"cve": "CVE-2023-52845",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52845"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntipc: Change nla_policy for bearer-related names to NLA_NUL_STRING\n\nsyzbot reported the following uninit-value access issue [1]:\n\n=====================================================\nBUG: KMSAN: uninit-value in strlen lib/string.c:418 [inline]\nBUG: KMSAN: uninit-value in strstr+0xb8/0x2f0 lib/string.c:756\n strlen lib/string.c:418 [inline]\n strstr+0xb8/0x2f0 lib/string.c:756\n tipc_nl_node_reset_link_stats+0x3ea/0xb50 net/tipc/node.c:2595\n genl_family_rcv_msg_doit net/netlink/genetlink.c:971 [inline]\n genl_family_rcv_msg net/netlink/genetlink.c:1051 [inline]\n genl_rcv_msg+0x11ec/0x1290 net/netlink/genetlink.c:1066\n netlink_rcv_skb+0x371/0x650 net/netlink/af_netlink.c:2545\n genl_rcv+0x40/0x60 net/netlink/genetlink.c:1075\n netlink_unicast_kernel net/netlink/af_netlink.c:1342 [inline]\n netlink_unicast+0xf47/0x1250 net/netlink/af_netlink.c:1368\n netlink_sendmsg+0x1238/0x13d0 net/netlink/af_netlink.c:1910\n sock_sendmsg_nosec net/socket.c:730 [inline]\n sock_sendmsg net/socket.c:753 [inline]\n ____sys_sendmsg+0x9c2/0xd60 net/socket.c:2541\n ___sys_sendmsg+0x28d/0x3c0 net/socket.c:2595\n __sys_sendmsg net/socket.c:2624 [inline]\n __do_sys_sendmsg net/socket.c:2633 [inline]\n __se_sys_sendmsg net/socket.c:2631 [inline]\n __x64_sys_sendmsg+0x307/0x490 net/socket.c:2631\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nUninit was created at:\n slab_post_alloc_hook+0x12f/0xb70 mm/slab.h:767\n slab_alloc_node mm/slub.c:3478 [inline]\n kmem_cache_alloc_node+0x577/0xa80 mm/slub.c:3523\n kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:559\n __alloc_skb+0x318/0x740 net/core/skbuff.c:650\n alloc_skb include/linux/skbuff.h:1286 [inline]\n netlink_alloc_large_skb net/netlink/af_netlink.c:1214 [inline]\n netlink_sendmsg+0xb34/0x13d0 net/netlink/af_netlink.c:1885\n sock_sendmsg_nosec net/socket.c:730 [inline]\n sock_sendmsg net/socket.c:753 [inline]\n ____sys_sendmsg+0x9c2/0xd60 net/socket.c:2541\n ___sys_sendmsg+0x28d/0x3c0 net/socket.c:2595\n __sys_sendmsg net/socket.c:2624 [inline]\n __do_sys_sendmsg net/socket.c:2633 [inline]\n __se_sys_sendmsg net/socket.c:2631 [inline]\n __x64_sys_sendmsg+0x307/0x490 net/socket.c:2631\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nTIPC bearer-related names including link names must be null-terminated\nstrings. If a link name which is not null-terminated is passed through\nnetlink, strstr() and similar functions can cause buffer overrun. This\ncauses the above issue.\n\nThis patch changes the nla_policy for bearer-related names from NLA_STRING\nto NLA_NUL_STRING. This resolves the issue by ensuring that only\nnull-terminated strings are accepted as bearer-related names.\n\nsyzbot reported similar uninit-value issue related to bearer names [2]. The\nroot cause of this issue is that a non-null-terminated bearer name was\npassed. This patch also resolved this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52845",
"url": "https://www.suse.com/security/cve/CVE-2023-52845"
},
{
"category": "external",
"summary": "SUSE Bug 1225585 for CVE-2023-52845",
"url": "https://bugzilla.suse.com/1225585"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2023-52845"
},
{
"cve": "CVE-2023-52855",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52855"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc2: fix possible NULL pointer dereference caused by driver concurrency\n\nIn _dwc2_hcd_urb_enqueue(), \"urb-\u003ehcpriv = NULL\" is executed without\nholding the lock \"hsotg-\u003elock\". In _dwc2_hcd_urb_dequeue():\n\n spin_lock_irqsave(\u0026hsotg-\u003elock, flags);\n ...\n\tif (!urb-\u003ehcpriv) {\n\t\tdev_dbg(hsotg-\u003edev, \"## urb-\u003ehcpriv is NULL ##\\n\");\n\t\tgoto out;\n\t}\n rc = dwc2_hcd_urb_dequeue(hsotg, urb-\u003ehcpriv); // Use urb-\u003ehcpriv\n ...\nout:\n spin_unlock_irqrestore(\u0026hsotg-\u003elock, flags);\n\nWhen _dwc2_hcd_urb_enqueue() and _dwc2_hcd_urb_dequeue() are\nconcurrently executed, the NULL check of \"urb-\u003ehcpriv\" can be executed\nbefore \"urb-\u003ehcpriv = NULL\". After urb-\u003ehcpriv is NULL, it can be used\nin the function call to dwc2_hcd_urb_dequeue(), which can cause a NULL\npointer dereference.\n\nThis possible bug is found by an experimental static analysis tool\ndeveloped by myself. This tool analyzes the locking APIs to extract\nfunction pairs that can be concurrently executed, and then analyzes the\ninstructions in the paired functions to identify possible concurrency\nbugs including data races and atomicity violations. The above possible\nbug is reported, when my tool analyzes the source code of Linux 6.5.\n\nTo fix this possible bug, \"urb-\u003ehcpriv = NULL\" should be executed with\nholding the lock \"hsotg-\u003elock\". After using this patch, my tool never\nreports the possible bug, with the kernelconfiguration allyesconfig for\nx86_64. Because I have no associated hardware, I cannot test the patch\nin runtime testing, and just verify it according to the code logic.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52855",
"url": "https://www.suse.com/security/cve/CVE-2023-52855"
},
{
"category": "external",
"summary": "SUSE Bug 1225583 for CVE-2023-52855",
"url": "https://bugzilla.suse.com/1225583"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2023-52855"
},
{
"cve": "CVE-2023-52881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52881"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: do not accept ACK of bytes we never sent\n\nThis patch is based on a detailed report and ideas from Yepeng Pan\nand Christian Rossow.\n\nACK seq validation is currently following RFC 5961 5.2 guidelines:\n\n The ACK value is considered acceptable only if\n it is in the range of ((SND.UNA - MAX.SND.WND) \u003c= SEG.ACK \u003c=\n SND.NXT). All incoming segments whose ACK value doesn\u0027t satisfy the\n above condition MUST be discarded and an ACK sent back. It needs to\n be noted that RFC 793 on page 72 (fifth check) says: \"If the ACK is a\n duplicate (SEG.ACK \u003c SND.UNA), it can be ignored. If the ACK\n acknowledges something not yet sent (SEG.ACK \u003e SND.NXT) then send an\n ACK, drop the segment, and return\". The \"ignored\" above implies that\n the processing of the incoming data segment continues, which means\n the ACK value is treated as acceptable. This mitigation makes the\n ACK check more stringent since any ACK \u003c SND.UNA wouldn\u0027t be\n accepted, instead only ACKs that are in the range ((SND.UNA -\n MAX.SND.WND) \u003c= SEG.ACK \u003c= SND.NXT) get through.\n\nThis can be refined for new (and possibly spoofed) flows,\nby not accepting ACK for bytes that were never sent.\n\nThis greatly improves TCP security at a little cost.\n\nI added a Fixes: tag to make sure this patch will reach stable trees,\neven if the \u0027blamed\u0027 patch was adhering to the RFC.\n\ntp-\u003ebytes_acked was added in linux-4.2\n\nFollowing packetdrill test (courtesy of Yepeng Pan) shows\nthe issue at hand:\n\n0 socket(..., SOCK_STREAM, IPPROTO_TCP) = 3\n+0 setsockopt(3, SOL_SOCKET, SO_REUSEADDR, [1], 4) = 0\n+0 bind(3, ..., ...) = 0\n+0 listen(3, 1024) = 0\n\n// ---------------- Handshake ------------------- //\n\n// when window scale is set to 14 the window size can be extended to\n// 65535 * (2^14) = 1073725440. Linux would accept an ACK packet\n// with ack number in (Server_ISN+1-1073725440. Server_ISN+1)\n// ,though this ack number acknowledges some data never\n// sent by the server.\n\n+0 \u003c S 0:0(0) win 65535 \u003cmss 1400,nop,wscale 14\u003e\n+0 \u003e S. 0:0(0) ack 1 \u003c...\u003e\n+0 \u003c . 1:1(0) ack 1 win 65535\n+0 accept(3, ..., ...) = 4\n\n// For the established connection, we send an ACK packet,\n// the ack packet uses ack number 1 - 1073725300 + 2^32,\n// where 2^32 is used to wrap around.\n// Note: we used 1073725300 instead of 1073725440 to avoid possible\n// edge cases.\n// 1 - 1073725300 + 2^32 = 3221241997\n\n// Oops, old kernels happily accept this packet.\n+0 \u003c . 1:1001(1000) ack 3221241997 win 65535\n\n// After the kernel fix the following will be replaced by a challenge ACK,\n// and prior malicious frame would be dropped.\n+0 \u003e . 1:1(0) ack 1001",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52881",
"url": "https://www.suse.com/security/cve/CVE-2023-52881"
},
{
"category": "external",
"summary": "SUSE Bug 1223384 for CVE-2023-52881",
"url": "https://bugzilla.suse.com/1223384"
},
{
"category": "external",
"summary": "SUSE Bug 1225611 for CVE-2023-52881",
"url": "https://bugzilla.suse.com/1225611"
},
{
"category": "external",
"summary": "SUSE Bug 1226152 for CVE-2023-52881",
"url": "https://bugzilla.suse.com/1226152"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2023-52881"
},
{
"cve": "CVE-2024-26633",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26633"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nip6_tunnel: fix NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tlv_enc_lim()\n\nsyzbot pointed out [1] that NEXTHDR_FRAGMENT handling is broken.\n\nReading frag_off can only be done if we pulled enough bytes\nto skb-\u003ehead. Currently we might access garbage.\n\n[1]\nBUG: KMSAN: uninit-value in ip6_tnl_parse_tlv_enc_lim+0x94f/0xbb0\nip6_tnl_parse_tlv_enc_lim+0x94f/0xbb0\nipxip6_tnl_xmit net/ipv6/ip6_tunnel.c:1326 [inline]\nip6_tnl_start_xmit+0xab2/0x1a70 net/ipv6/ip6_tunnel.c:1432\n__netdev_start_xmit include/linux/netdevice.h:4940 [inline]\nnetdev_start_xmit include/linux/netdevice.h:4954 [inline]\nxmit_one net/core/dev.c:3548 [inline]\ndev_hard_start_xmit+0x247/0xa10 net/core/dev.c:3564\n__dev_queue_xmit+0x33b8/0x5130 net/core/dev.c:4349\ndev_queue_xmit include/linux/netdevice.h:3134 [inline]\nneigh_connected_output+0x569/0x660 net/core/neighbour.c:1592\nneigh_output include/net/neighbour.h:542 [inline]\nip6_finish_output2+0x23a9/0x2b30 net/ipv6/ip6_output.c:137\nip6_finish_output+0x855/0x12b0 net/ipv6/ip6_output.c:222\nNF_HOOK_COND include/linux/netfilter.h:303 [inline]\nip6_output+0x323/0x610 net/ipv6/ip6_output.c:243\ndst_output include/net/dst.h:451 [inline]\nip6_local_out+0xe9/0x140 net/ipv6/output_core.c:155\nip6_send_skb net/ipv6/ip6_output.c:1952 [inline]\nip6_push_pending_frames+0x1f9/0x560 net/ipv6/ip6_output.c:1972\nrawv6_push_pending_frames+0xbe8/0xdf0 net/ipv6/raw.c:582\nrawv6_sendmsg+0x2b66/0x2e70 net/ipv6/raw.c:920\ninet_sendmsg+0x105/0x190 net/ipv4/af_inet.c:847\nsock_sendmsg_nosec net/socket.c:730 [inline]\n__sock_sendmsg net/socket.c:745 [inline]\n____sys_sendmsg+0x9c2/0xd60 net/socket.c:2584\n___sys_sendmsg+0x28d/0x3c0 net/socket.c:2638\n__sys_sendmsg net/socket.c:2667 [inline]\n__do_sys_sendmsg net/socket.c:2676 [inline]\n__se_sys_sendmsg net/socket.c:2674 [inline]\n__x64_sys_sendmsg+0x307/0x490 net/socket.c:2674\ndo_syscall_x64 arch/x86/entry/common.c:52 [inline]\ndo_syscall_64+0x44/0x110 arch/x86/entry/common.c:83\nentry_SYSCALL_64_after_hwframe+0x63/0x6b\n\nUninit was created at:\nslab_post_alloc_hook+0x129/0xa70 mm/slab.h:768\nslab_alloc_node mm/slub.c:3478 [inline]\n__kmem_cache_alloc_node+0x5c9/0x970 mm/slub.c:3517\n__do_kmalloc_node mm/slab_common.c:1006 [inline]\n__kmalloc_node_track_caller+0x118/0x3c0 mm/slab_common.c:1027\nkmalloc_reserve+0x249/0x4a0 net/core/skbuff.c:582\npskb_expand_head+0x226/0x1a00 net/core/skbuff.c:2098\n__pskb_pull_tail+0x13b/0x2310 net/core/skbuff.c:2655\npskb_may_pull_reason include/linux/skbuff.h:2673 [inline]\npskb_may_pull include/linux/skbuff.h:2681 [inline]\nip6_tnl_parse_tlv_enc_lim+0x901/0xbb0 net/ipv6/ip6_tunnel.c:408\nipxip6_tnl_xmit net/ipv6/ip6_tunnel.c:1326 [inline]\nip6_tnl_start_xmit+0xab2/0x1a70 net/ipv6/ip6_tunnel.c:1432\n__netdev_start_xmit include/linux/netdevice.h:4940 [inline]\nnetdev_start_xmit include/linux/netdevice.h:4954 [inline]\nxmit_one net/core/dev.c:3548 [inline]\ndev_hard_start_xmit+0x247/0xa10 net/core/dev.c:3564\n__dev_queue_xmit+0x33b8/0x5130 net/core/dev.c:4349\ndev_queue_xmit include/linux/netdevice.h:3134 [inline]\nneigh_connected_output+0x569/0x660 net/core/neighbour.c:1592\nneigh_output include/net/neighbour.h:542 [inline]\nip6_finish_output2+0x23a9/0x2b30 net/ipv6/ip6_output.c:137\nip6_finish_output+0x855/0x12b0 net/ipv6/ip6_output.c:222\nNF_HOOK_COND include/linux/netfilter.h:303 [inline]\nip6_output+0x323/0x610 net/ipv6/ip6_output.c:243\ndst_output include/net/dst.h:451 [inline]\nip6_local_out+0xe9/0x140 net/ipv6/output_core.c:155\nip6_send_skb net/ipv6/ip6_output.c:1952 [inline]\nip6_push_pending_frames+0x1f9/0x560 net/ipv6/ip6_output.c:1972\nrawv6_push_pending_frames+0xbe8/0xdf0 net/ipv6/raw.c:582\nrawv6_sendmsg+0x2b66/0x2e70 net/ipv6/raw.c:920\ninet_sendmsg+0x105/0x190 net/ipv4/af_inet.c:847\nsock_sendmsg_nosec net/socket.c:730 [inline]\n__sock_sendmsg net/socket.c:745 [inline]\n____sys_sendmsg+0x9c2/0xd60 net/socket.c:2584\n___sys_sendmsg+0x28d/0x3c0 net/socket.c:2638\n__sys_sendmsg net/socket.c:2667 [inline]\n__do_sys_sendms\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26633",
"url": "https://www.suse.com/security/cve/CVE-2024-26633"
},
{
"category": "external",
"summary": "SUSE Bug 1221647 for CVE-2024-26633",
"url": "https://bugzilla.suse.com/1221647"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-26633"
},
{
"cve": "CVE-2024-26641",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26641"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv()\n\nsyzbot found __ip6_tnl_rcv() could access unitiliazed data [1].\n\nCall pskb_inet_may_pull() to fix this, and initialize ipv6h\nvariable after this call as it can change skb-\u003ehead.\n\n[1]\n BUG: KMSAN: uninit-value in __INET_ECN_decapsulate include/net/inet_ecn.h:253 [inline]\n BUG: KMSAN: uninit-value in INET_ECN_decapsulate include/net/inet_ecn.h:275 [inline]\n BUG: KMSAN: uninit-value in IP6_ECN_decapsulate+0x7df/0x1e50 include/net/inet_ecn.h:321\n __INET_ECN_decapsulate include/net/inet_ecn.h:253 [inline]\n INET_ECN_decapsulate include/net/inet_ecn.h:275 [inline]\n IP6_ECN_decapsulate+0x7df/0x1e50 include/net/inet_ecn.h:321\n ip6ip6_dscp_ecn_decapsulate+0x178/0x1b0 net/ipv6/ip6_tunnel.c:727\n __ip6_tnl_rcv+0xd4e/0x1590 net/ipv6/ip6_tunnel.c:845\n ip6_tnl_rcv+0xce/0x100 net/ipv6/ip6_tunnel.c:888\n gre_rcv+0x143f/0x1870\n ip6_protocol_deliver_rcu+0xda6/0x2a60 net/ipv6/ip6_input.c:438\n ip6_input_finish net/ipv6/ip6_input.c:483 [inline]\n NF_HOOK include/linux/netfilter.h:314 [inline]\n ip6_input+0x15d/0x430 net/ipv6/ip6_input.c:492\n ip6_mc_input+0xa7e/0xc80 net/ipv6/ip6_input.c:586\n dst_input include/net/dst.h:461 [inline]\n ip6_rcv_finish+0x5db/0x870 net/ipv6/ip6_input.c:79\n NF_HOOK include/linux/netfilter.h:314 [inline]\n ipv6_rcv+0xda/0x390 net/ipv6/ip6_input.c:310\n __netif_receive_skb_one_core net/core/dev.c:5532 [inline]\n __netif_receive_skb+0x1a6/0x5a0 net/core/dev.c:5646\n netif_receive_skb_internal net/core/dev.c:5732 [inline]\n netif_receive_skb+0x58/0x660 net/core/dev.c:5791\n tun_rx_batched+0x3ee/0x980 drivers/net/tun.c:1555\n tun_get_user+0x53af/0x66d0 drivers/net/tun.c:2002\n tun_chr_write_iter+0x3af/0x5d0 drivers/net/tun.c:2048\n call_write_iter include/linux/fs.h:2084 [inline]\n new_sync_write fs/read_write.c:497 [inline]\n vfs_write+0x786/0x1200 fs/read_write.c:590\n ksys_write+0x20f/0x4c0 fs/read_write.c:643\n __do_sys_write fs/read_write.c:655 [inline]\n __se_sys_write fs/read_write.c:652 [inline]\n __x64_sys_write+0x93/0xd0 fs/read_write.c:652\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0x6d/0x140 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x63/0x6b\n\nUninit was created at:\n slab_post_alloc_hook+0x129/0xa70 mm/slab.h:768\n slab_alloc_node mm/slub.c:3478 [inline]\n kmem_cache_alloc_node+0x5e9/0xb10 mm/slub.c:3523\n kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:560\n __alloc_skb+0x318/0x740 net/core/skbuff.c:651\n alloc_skb include/linux/skbuff.h:1286 [inline]\n alloc_skb_with_frags+0xc8/0xbd0 net/core/skbuff.c:6334\n sock_alloc_send_pskb+0xa80/0xbf0 net/core/sock.c:2787\n tun_alloc_skb drivers/net/tun.c:1531 [inline]\n tun_get_user+0x1e8a/0x66d0 drivers/net/tun.c:1846\n tun_chr_write_iter+0x3af/0x5d0 drivers/net/tun.c:2048\n call_write_iter include/linux/fs.h:2084 [inline]\n new_sync_write fs/read_write.c:497 [inline]\n vfs_write+0x786/0x1200 fs/read_write.c:590\n ksys_write+0x20f/0x4c0 fs/read_write.c:643\n __do_sys_write fs/read_write.c:655 [inline]\n __se_sys_write fs/read_write.c:652 [inline]\n __x64_sys_write+0x93/0xd0 fs/read_write.c:652\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0x6d/0x140 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x63/0x6b\n\nCPU: 0 PID: 5034 Comm: syz-executor331 Not tainted 6.7.0-syzkaller-00562-g9f8413c4a66f #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26641",
"url": "https://www.suse.com/security/cve/CVE-2024-26641"
},
{
"category": "external",
"summary": "SUSE Bug 1221654 for CVE-2024-26641",
"url": "https://bugzilla.suse.com/1221654"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-26641"
},
{
"cve": "CVE-2024-26679",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26679"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninet: read sk-\u003esk_family once in inet_recv_error()\n\ninet_recv_error() is called without holding the socket lock.\n\nIPv6 socket could mutate to IPv4 with IPV6_ADDRFORM\nsocket option and trigger a KCSAN warning.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26679",
"url": "https://www.suse.com/security/cve/CVE-2024-26679"
},
{
"category": "external",
"summary": "SUSE Bug 1222385 for CVE-2024-26679",
"url": "https://bugzilla.suse.com/1222385"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-26679"
},
{
"cve": "CVE-2024-26687",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26687"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxen/events: close evtchn after mapping cleanup\n\nshutdown_pirq and startup_pirq are not taking the\nirq_mapping_update_lock because they can\u0027t due to lock inversion. Both\nare called with the irq_desc-\u003elock being taking. The lock order,\nhowever, is first irq_mapping_update_lock and then irq_desc-\u003elock.\n\nThis opens multiple races:\n- shutdown_pirq can be interrupted by a function that allocates an event\n channel:\n\n CPU0 CPU1\n shutdown_pirq {\n xen_evtchn_close(e)\n __startup_pirq {\n EVTCHNOP_bind_pirq\n -\u003e returns just freed evtchn e\n set_evtchn_to_irq(e, irq)\n }\n xen_irq_info_cleanup() {\n set_evtchn_to_irq(e, -1)\n }\n }\n\n Assume here event channel e refers here to the same event channel\n number.\n After this race the evtchn_to_irq mapping for e is invalid (-1).\n\n- __startup_pirq races with __unbind_from_irq in a similar way. Because\n __startup_pirq doesn\u0027t take irq_mapping_update_lock it can grab the\n evtchn that __unbind_from_irq is currently freeing and cleaning up. In\n this case even though the event channel is allocated, its mapping can\n be unset in evtchn_to_irq.\n\nThe fix is to first cleanup the mappings and then close the event\nchannel. In this way, when an event channel gets allocated it\u0027s\npotential previous evtchn_to_irq mappings are guaranteed to be unset already.\nThis is also the reverse order of the allocation where first the event\nchannel is allocated and then the mappings are setup.\n\nOn a 5.10 kernel prior to commit 3fcdaf3d7634 (\"xen/events: modify internal\n[un]bind interfaces\"), we hit a BUG like the following during probing of NVMe\ndevices. The issue is that during nvme_setup_io_queues, pci_free_irq\nis called for every device which results in a call to shutdown_pirq.\nWith many nvme devices it\u0027s therefore likely to hit this race during\nboot because there will be multiple calls to shutdown_pirq and\nstartup_pirq are running potentially in parallel.\n\n ------------[ cut here ]------------\n blkfront: xvda: barrier or flush: disabled; persistent grants: enabled; indirect descriptors: enabled; bounce buffer: enabled\n kernel BUG at drivers/xen/events/events_base.c:499!\n invalid opcode: 0000 [#1] SMP PTI\n CPU: 44 PID: 375 Comm: kworker/u257:23 Not tainted 5.10.201-191.748.amzn2.x86_64 #1\n Hardware name: Xen HVM domU, BIOS 4.11.amazon 08/24/2006\n Workqueue: nvme-reset-wq nvme_reset_work\n RIP: 0010:bind_evtchn_to_cpu+0xdf/0xf0\n Code: 5d 41 5e c3 cc cc cc cc 44 89 f7 e8 2b 55 ad ff 49 89 c5 48 85 c0 0f 84 64 ff ff ff 4c 8b 68 30 41 83 fe ff 0f 85 60 ff ff ff \u003c0f\u003e 0b 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 0f 1f 44 00 00\n RSP: 0000:ffffc9000d533b08 EFLAGS: 00010046\n RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000006\n RDX: 0000000000000028 RSI: 00000000ffffffff RDI: 00000000ffffffff\n RBP: ffff888107419680 R08: 0000000000000000 R09: ffffffff82d72b00\n R10: 0000000000000000 R11: 0000000000000000 R12: 00000000000001ed\n R13: 0000000000000000 R14: 00000000ffffffff R15: 0000000000000002\n FS: 0000000000000000(0000) GS:ffff88bc8b500000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000000 CR3: 0000000002610001 CR4: 00000000001706e0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n Call Trace:\n ? show_trace_log_lvl+0x1c1/0x2d9\n ? show_trace_log_lvl+0x1c1/0x2d9\n ? set_affinity_irq+0xdc/0x1c0\n ? __die_body.cold+0x8/0xd\n ? die+0x2b/0x50\n ? do_trap+0x90/0x110\n ? bind_evtchn_to_cpu+0xdf/0xf0\n ? do_error_trap+0x65/0x80\n ? bind_evtchn_to_cpu+0xdf/0xf0\n ? exc_invalid_op+0x4e/0x70\n ? bind_evtchn_to_cpu+0xdf/0xf0\n ? asm_exc_invalid_op+0x12/0x20\n ? bind_evtchn_to_cpu+0xdf/0x\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26687",
"url": "https://www.suse.com/security/cve/CVE-2024-26687"
},
{
"category": "external",
"summary": "SUSE Bug 1222435 for CVE-2024-26687",
"url": "https://bugzilla.suse.com/1222435"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-26687"
},
{
"cve": "CVE-2024-26720",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26720"
}
],
"notes": [
{
"category": "general",
"text": "** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26720",
"url": "https://www.suse.com/security/cve/CVE-2024-26720"
},
{
"category": "external",
"summary": "SUSE Bug 1222364 for CVE-2024-26720",
"url": "https://bugzilla.suse.com/1222364"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-26720"
},
{
"cve": "CVE-2024-26813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26813"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvfio/platform: Create persistent IRQ handlers\n\nThe vfio-platform SET_IRQS ioctl currently allows loopback triggering of\nan interrupt before a signaling eventfd has been configured by the user,\nwhich thereby allows a NULL pointer dereference.\n\nRather than register the IRQ relative to a valid trigger, register all\nIRQs in a disabled state in the device open path. This allows mask\noperations on the IRQ to nest within the overall enable state governed\nby a valid eventfd signal. This decouples @masked, protected by the\n@locked spinlock from @trigger, protected via the @igate mutex.\n\nIn doing so, it\u0027s guaranteed that changes to @trigger cannot race the\nIRQ handlers because the IRQ handler is synchronously disabled before\nmodifying the trigger, and loopback triggering of the IRQ via ioctl is\nsafe due to serialization with trigger changes via igate.\n\nFor compatibility, request_irq() failures are maintained to be local to\nthe SET_IRQS ioctl rather than a fatal error in the open device path.\nThis allows, for example, a userspace driver with polling mode support\nto continue to work regardless of moving the request_irq() call site.\nThis necessarily blocks all SET_IRQS access to the failed index.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26813",
"url": "https://www.suse.com/security/cve/CVE-2024-26813"
},
{
"category": "external",
"summary": "SUSE Bug 1222809 for CVE-2024-26813",
"url": "https://bugzilla.suse.com/1222809"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-26813"
},
{
"cve": "CVE-2024-26845",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26845"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: target: core: Add TMF to tmr_list handling\n\nAn abort that is responded to by iSCSI itself is added to tmr_list but does\nnot go to target core. A LUN_RESET that goes through tmr_list takes a\nrefcounter on the abort and waits for completion. However, the abort will\nbe never complete because it was not started in target core.\n\n Unable to locate ITT: 0x05000000 on CID: 0\n Unable to locate RefTaskTag: 0x05000000 on CID: 0.\n wait_for_tasks: Stopping tmf LUN_RESET with tag 0x0 ref_task_tag 0x0 i_state 34 t_state ISTATE_PROCESSING refcnt 2 transport_state active,stop,fabric_stop\n wait for tasks: tmf LUN_RESET with tag 0x0 ref_task_tag 0x0 i_state 34 t_state ISTATE_PROCESSING refcnt 2 transport_state active,stop,fabric_stop\n...\n INFO: task kworker/0:2:49 blocked for more than 491 seconds.\n task:kworker/0:2 state:D stack: 0 pid: 49 ppid: 2 flags:0x00000800\n Workqueue: events target_tmr_work [target_core_mod]\nCall Trace:\n __switch_to+0x2c4/0x470\n _schedule+0x314/0x1730\n schedule+0x64/0x130\n schedule_timeout+0x168/0x430\n wait_for_completion+0x140/0x270\n target_put_cmd_and_wait+0x64/0xb0 [target_core_mod]\n core_tmr_lun_reset+0x30/0xa0 [target_core_mod]\n target_tmr_work+0xc8/0x1b0 [target_core_mod]\n process_one_work+0x2d4/0x5d0\n worker_thread+0x78/0x6c0\n\nTo fix this, only add abort to tmr_list if it will be handled by target\ncore.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26845",
"url": "https://www.suse.com/security/cve/CVE-2024-26845"
},
{
"category": "external",
"summary": "SUSE Bug 1223018 for CVE-2024-26845",
"url": "https://bugzilla.suse.com/1223018"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-26845"
},
{
"cve": "CVE-2024-26863",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26863"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhsr: Fix uninit-value access in hsr_get_node()\n\nKMSAN reported the following uninit-value access issue [1]:\n\n=====================================================\nBUG: KMSAN: uninit-value in hsr_get_node+0xa2e/0xa40 net/hsr/hsr_framereg.c:246\n hsr_get_node+0xa2e/0xa40 net/hsr/hsr_framereg.c:246\n fill_frame_info net/hsr/hsr_forward.c:577 [inline]\n hsr_forward_skb+0xe12/0x30e0 net/hsr/hsr_forward.c:615\n hsr_dev_xmit+0x1a1/0x270 net/hsr/hsr_device.c:223\n __netdev_start_xmit include/linux/netdevice.h:4940 [inline]\n netdev_start_xmit include/linux/netdevice.h:4954 [inline]\n xmit_one net/core/dev.c:3548 [inline]\n dev_hard_start_xmit+0x247/0xa10 net/core/dev.c:3564\n __dev_queue_xmit+0x33b8/0x5130 net/core/dev.c:4349\n dev_queue_xmit include/linux/netdevice.h:3134 [inline]\n packet_xmit+0x9c/0x6b0 net/packet/af_packet.c:276\n packet_snd net/packet/af_packet.c:3087 [inline]\n packet_sendmsg+0x8b1d/0x9f30 net/packet/af_packet.c:3119\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg net/socket.c:745 [inline]\n __sys_sendto+0x735/0xa10 net/socket.c:2191\n __do_sys_sendto net/socket.c:2203 [inline]\n __se_sys_sendto net/socket.c:2199 [inline]\n __x64_sys_sendto+0x125/0x1c0 net/socket.c:2199\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0x6d/0x140 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x63/0x6b\n\nUninit was created at:\n slab_post_alloc_hook+0x129/0xa70 mm/slab.h:768\n slab_alloc_node mm/slub.c:3478 [inline]\n kmem_cache_alloc_node+0x5e9/0xb10 mm/slub.c:3523\n kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:560\n __alloc_skb+0x318/0x740 net/core/skbuff.c:651\n alloc_skb include/linux/skbuff.h:1286 [inline]\n alloc_skb_with_frags+0xc8/0xbd0 net/core/skbuff.c:6334\n sock_alloc_send_pskb+0xa80/0xbf0 net/core/sock.c:2787\n packet_alloc_skb net/packet/af_packet.c:2936 [inline]\n packet_snd net/packet/af_packet.c:3030 [inline]\n packet_sendmsg+0x70e8/0x9f30 net/packet/af_packet.c:3119\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg net/socket.c:745 [inline]\n __sys_sendto+0x735/0xa10 net/socket.c:2191\n __do_sys_sendto net/socket.c:2203 [inline]\n __se_sys_sendto net/socket.c:2199 [inline]\n __x64_sys_sendto+0x125/0x1c0 net/socket.c:2199\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0x6d/0x140 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x63/0x6b\n\nCPU: 1 PID: 5033 Comm: syz-executor334 Not tainted 6.7.0-syzkaller-00562-g9f8413c4a66f #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023\n=====================================================\n\nIf the packet type ID field in the Ethernet header is either ETH_P_PRP or\nETH_P_HSR, but it is not followed by an HSR tag, hsr_get_skb_sequence_nr()\nreads an invalid value as a sequence number. This causes the above issue.\n\nThis patch fixes the issue by returning NULL if the Ethernet header is not\nfollowed by an HSR tag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26863",
"url": "https://www.suse.com/security/cve/CVE-2024-26863"
},
{
"category": "external",
"summary": "SUSE Bug 1223021 for CVE-2024-26863",
"url": "https://bugzilla.suse.com/1223021"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-26863"
},
{
"cve": "CVE-2024-26894",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26894"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPI: processor_idle: Fix memory leak in acpi_processor_power_exit()\n\nAfter unregistering the CPU idle device, the memory associated with\nit is not freed, leading to a memory leak:\n\nunreferenced object 0xffff896282f6c000 (size 1024):\n comm \"swapper/0\", pid 1, jiffies 4294893170\n hex dump (first 32 bytes):\n 00 00 00 00 0b 00 00 00 00 00 00 00 00 00 00 00 ................\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n backtrace (crc 8836a742):\n [\u003cffffffff993495ed\u003e] kmalloc_trace+0x29d/0x340\n [\u003cffffffff9972f3b3\u003e] acpi_processor_power_init+0xf3/0x1c0\n [\u003cffffffff9972d263\u003e] __acpi_processor_start+0xd3/0xf0\n [\u003cffffffff9972d2bc\u003e] acpi_processor_start+0x2c/0x50\n [\u003cffffffff99805872\u003e] really_probe+0xe2/0x480\n [\u003cffffffff99805c98\u003e] __driver_probe_device+0x78/0x160\n [\u003cffffffff99805daf\u003e] driver_probe_device+0x1f/0x90\n [\u003cffffffff9980601e\u003e] __driver_attach+0xce/0x1c0\n [\u003cffffffff99803170\u003e] bus_for_each_dev+0x70/0xc0\n [\u003cffffffff99804822\u003e] bus_add_driver+0x112/0x210\n [\u003cffffffff99807245\u003e] driver_register+0x55/0x100\n [\u003cffffffff9aee4acb\u003e] acpi_processor_driver_init+0x3b/0xc0\n [\u003cffffffff990012d1\u003e] do_one_initcall+0x41/0x300\n [\u003cffffffff9ae7c4b0\u003e] kernel_init_freeable+0x320/0x470\n [\u003cffffffff99b231f6\u003e] kernel_init+0x16/0x1b0\n [\u003cffffffff99042e6d\u003e] ret_from_fork+0x2d/0x50\n\nFix this by freeing the CPU idle device after unregistering it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26894",
"url": "https://www.suse.com/security/cve/CVE-2024-26894"
},
{
"category": "external",
"summary": "SUSE Bug 1223043 for CVE-2024-26894",
"url": "https://bugzilla.suse.com/1223043"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-26894"
},
{
"cve": "CVE-2024-26923",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26923"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naf_unix: Fix garbage collector racing against connect()\n\nGarbage collector does not take into account the risk of embryo getting\nenqueued during the garbage collection. If such embryo has a peer that\ncarries SCM_RIGHTS, two consecutive passes of scan_children() may see a\ndifferent set of children. Leading to an incorrectly elevated inflight\ncount, and then a dangling pointer within the gc_inflight_list.\n\nsockets are AF_UNIX/SOCK_STREAM\nS is an unconnected socket\nL is a listening in-flight socket bound to addr, not in fdtable\nV\u0027s fd will be passed via sendmsg(), gets inflight count bumped\n\nconnect(S, addr)\tsendmsg(S, [V]); close(V)\t__unix_gc()\n----------------\t-------------------------\t-----------\n\nNS = unix_create1()\nskb1 = sock_wmalloc(NS)\nL = unix_find_other(addr)\nunix_state_lock(L)\nunix_peer(S) = NS\n\t\t\t// V count=1 inflight=0\n\n \t\t\tNS = unix_peer(S)\n \t\t\tskb2 = sock_alloc()\n\t\t\tskb_queue_tail(NS, skb2[V])\n\n\t\t\t// V became in-flight\n\t\t\t// V count=2 inflight=1\n\n\t\t\tclose(V)\n\n\t\t\t// V count=1 inflight=1\n\t\t\t// GC candidate condition met\n\n\t\t\t\t\t\tfor u in gc_inflight_list:\n\t\t\t\t\t\t if (total_refs == inflight_refs)\n\t\t\t\t\t\t add u to gc_candidates\n\n\t\t\t\t\t\t// gc_candidates={L, V}\n\n\t\t\t\t\t\tfor u in gc_candidates:\n\t\t\t\t\t\t scan_children(u, dec_inflight)\n\n\t\t\t\t\t\t// embryo (skb1) was not\n\t\t\t\t\t\t// reachable from L yet, so V\u0027s\n\t\t\t\t\t\t// inflight remains unchanged\n__skb_queue_tail(L, skb1)\nunix_state_unlock(L)\n\t\t\t\t\t\tfor u in gc_candidates:\n\t\t\t\t\t\t if (u.inflight)\n\t\t\t\t\t\t scan_children(u, inc_inflight_move_tail)\n\n\t\t\t\t\t\t// V count=1 inflight=2 (!)\n\nIf there is a GC-candidate listening socket, lock/unlock its state. This\nmakes GC wait until the end of any ongoing connect() to that socket. After\nflipping the lock, a possibly SCM-laden embryo is already enqueued. And if\nthere is another embryo coming, it can not possibly carry SCM_RIGHTS. At\nthis point, unix_inflight() can not happen because unix_gc_lock is already\ntaken. Inflight graph remains unaffected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26923",
"url": "https://www.suse.com/security/cve/CVE-2024-26923"
},
{
"category": "external",
"summary": "SUSE Bug 1223384 for CVE-2024-26923",
"url": "https://bugzilla.suse.com/1223384"
},
{
"category": "external",
"summary": "SUSE Bug 1223683 for CVE-2024-26923",
"url": "https://bugzilla.suse.com/1223683"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-26923"
},
{
"cve": "CVE-2024-26928",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26928"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix potential UAF in cifs_debug_files_proc_show()\n\nSkip sessions that are being teared down (status == SES_EXITING) to\navoid UAF.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26928",
"url": "https://www.suse.com/security/cve/CVE-2024-26928"
},
{
"category": "external",
"summary": "SUSE Bug 1223532 for CVE-2024-26928",
"url": "https://bugzilla.suse.com/1223532"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-26928"
},
{
"cve": "CVE-2024-26973",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26973"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfat: fix uninitialized field in nostale filehandles\n\nWhen fat_encode_fh_nostale() encodes file handle without a parent it\nstores only first 10 bytes of the file handle. However the length of the\nfile handle must be a multiple of 4 so the file handle is actually 12\nbytes long and the last two bytes remain uninitialized. This is not\ngreat at we potentially leak uninitialized information with the handle\nto userspace. Properly initialize the full handle length.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26973",
"url": "https://www.suse.com/security/cve/CVE-2024-26973"
},
{
"category": "external",
"summary": "SUSE Bug 1223641 for CVE-2024-26973",
"url": "https://bugzilla.suse.com/1223641"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-26973"
},
{
"cve": "CVE-2024-27399",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27399"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: l2cap: fix null-ptr-deref in l2cap_chan_timeout\n\nThere is a race condition between l2cap_chan_timeout() and\nl2cap_chan_del(). When we use l2cap_chan_del() to delete the\nchannel, the chan-\u003econn will be set to null. But the conn could\nbe dereferenced again in the mutex_lock() of l2cap_chan_timeout().\nAs a result the null pointer dereference bug will happen. The\nKASAN report triggered by POC is shown below:\n\n[ 472.074580] ==================================================================\n[ 472.075284] BUG: KASAN: null-ptr-deref in mutex_lock+0x68/0xc0\n[ 472.075308] Write of size 8 at addr 0000000000000158 by task kworker/0:0/7\n[ 472.075308]\n[ 472.075308] CPU: 0 PID: 7 Comm: kworker/0:0 Not tainted 6.9.0-rc5-00356-g78c0094a146b #36\n[ 472.075308] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu4\n[ 472.075308] Workqueue: events l2cap_chan_timeout\n[ 472.075308] Call Trace:\n[ 472.075308] \u003cTASK\u003e\n[ 472.075308] dump_stack_lvl+0x137/0x1a0\n[ 472.075308] print_report+0x101/0x250\n[ 472.075308] ? __virt_addr_valid+0x77/0x160\n[ 472.075308] ? mutex_lock+0x68/0xc0\n[ 472.075308] kasan_report+0x139/0x170\n[ 472.075308] ? mutex_lock+0x68/0xc0\n[ 472.075308] kasan_check_range+0x2c3/0x2e0\n[ 472.075308] mutex_lock+0x68/0xc0\n[ 472.075308] l2cap_chan_timeout+0x181/0x300\n[ 472.075308] process_one_work+0x5d2/0xe00\n[ 472.075308] worker_thread+0xe1d/0x1660\n[ 472.075308] ? pr_cont_work+0x5e0/0x5e0\n[ 472.075308] kthread+0x2b7/0x350\n[ 472.075308] ? pr_cont_work+0x5e0/0x5e0\n[ 472.075308] ? kthread_blkcg+0xd0/0xd0\n[ 472.075308] ret_from_fork+0x4d/0x80\n[ 472.075308] ? kthread_blkcg+0xd0/0xd0\n[ 472.075308] ret_from_fork_asm+0x11/0x20\n[ 472.075308] \u003c/TASK\u003e\n[ 472.075308] ==================================================================\n[ 472.094860] Disabling lock debugging due to kernel taint\n[ 472.096136] BUG: kernel NULL pointer dereference, address: 0000000000000158\n[ 472.096136] #PF: supervisor write access in kernel mode\n[ 472.096136] #PF: error_code(0x0002) - not-present page\n[ 472.096136] PGD 0 P4D 0\n[ 472.096136] Oops: 0002 [#1] PREEMPT SMP KASAN NOPTI\n[ 472.096136] CPU: 0 PID: 7 Comm: kworker/0:0 Tainted: G B 6.9.0-rc5-00356-g78c0094a146b #36\n[ 472.096136] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu4\n[ 472.096136] Workqueue: events l2cap_chan_timeout\n[ 472.096136] RIP: 0010:mutex_lock+0x88/0xc0\n[ 472.096136] Code: be 08 00 00 00 e8 f8 23 1f fd 4c 89 f7 be 08 00 00 00 e8 eb 23 1f fd 42 80 3c 23 00 74 08 48 88\n[ 472.096136] RSP: 0018:ffff88800744fc78 EFLAGS: 00000246\n[ 472.096136] RAX: 0000000000000000 RBX: 1ffff11000e89f8f RCX: ffffffff8457c865\n[ 472.096136] RDX: 0000000000000001 RSI: 0000000000000008 RDI: ffff88800744fc78\n[ 472.096136] RBP: 0000000000000158 R08: ffff88800744fc7f R09: 1ffff11000e89f8f\n[ 472.096136] R10: dffffc0000000000 R11: ffffed1000e89f90 R12: dffffc0000000000\n[ 472.096136] R13: 0000000000000158 R14: ffff88800744fc78 R15: ffff888007405a00\n[ 472.096136] FS: 0000000000000000(0000) GS:ffff88806d200000(0000) knlGS:0000000000000000\n[ 472.096136] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 472.096136] CR2: 0000000000000158 CR3: 000000000da32000 CR4: 00000000000006f0\n[ 472.096136] Call Trace:\n[ 472.096136] \u003cTASK\u003e\n[ 472.096136] ? __die_body+0x8d/0xe0\n[ 472.096136] ? page_fault_oops+0x6b8/0x9a0\n[ 472.096136] ? kernelmode_fixup_or_oops+0x20c/0x2a0\n[ 472.096136] ? do_user_addr_fault+0x1027/0x1340\n[ 472.096136] ? _printk+0x7a/0xa0\n[ 472.096136] ? mutex_lock+0x68/0xc0\n[ 472.096136] ? add_taint+0x42/0xd0\n[ 472.096136] ? exc_page_fault+0x6a/0x1b0\n[ 472.096136] ? asm_exc_page_fault+0x26/0x30\n[ 472.096136] ? mutex_lock+0x75/0xc0\n[ 472.096136] ? mutex_lock+0x88/0xc0\n[ 472.096136] ? mutex_lock+0x75/0xc0\n[ 472.096136] l2cap_chan_timeo\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27399",
"url": "https://www.suse.com/security/cve/CVE-2024-27399"
},
{
"category": "external",
"summary": "SUSE Bug 1224177 for CVE-2024-27399",
"url": "https://bugzilla.suse.com/1224177"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-27399"
},
{
"cve": "CVE-2024-27410",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27410"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: nl80211: reject iftype change with mesh ID change\n\nIt\u0027s currently possible to change the mesh ID when the\ninterface isn\u0027t yet in mesh mode, at the same time as\nchanging it into mesh mode. This leads to an overwrite\nof data in the wdev-\u003eu union for the interface type it\ncurrently has, causing cfg80211_change_iface() to do\nwrong things when switching.\n\nWe could probably allow setting an interface to mesh\nwhile setting the mesh ID at the same time by doing a\ndifferent order of operations here, but realistically\nthere\u0027s no userspace that\u0027s going to do this, so just\ndisallow changes in iftype when setting mesh ID.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27410",
"url": "https://www.suse.com/security/cve/CVE-2024-27410"
},
{
"category": "external",
"summary": "SUSE Bug 1224432 for CVE-2024-27410",
"url": "https://bugzilla.suse.com/1224432"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-27410"
},
{
"cve": "CVE-2024-35247",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35247"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfpga: region: add owner module and take its refcount\n\nThe current implementation of the fpga region assumes that the low-level\nmodule registers a driver for the parent device and uses its owner pointer\nto take the module\u0027s refcount. This approach is problematic since it can\nlead to a null pointer dereference while attempting to get the region\nduring programming if the parent device does not have a driver.\n\nTo address this problem, add a module owner pointer to the fpga_region\nstruct and use it to take the module\u0027s refcount. Modify the functions for\nregistering a region to take an additional owner module parameter and\nrename them to avoid conflicts. Use the old function names for helper\nmacros that automatically set the module that registers the region as the\nowner. This ensures compatibility with existing low-level control modules\nand reduces the chances of registering a region without setting the owner.\n\nAlso, update the documentation to keep it consistent with the new interface\nfor registering an fpga region.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35247",
"url": "https://www.suse.com/security/cve/CVE-2024-35247"
},
{
"category": "external",
"summary": "SUSE Bug 1226948 for CVE-2024-35247",
"url": "https://bugzilla.suse.com/1226948"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-35247"
},
{
"cve": "CVE-2024-35807",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35807"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix corruption during on-line resize\n\nWe observed a corruption during on-line resize of a file system that is\nlarger than 16 TiB with 4k block size. With having more then 2^32 blocks\nresize_inode is turned off by default by mke2fs. The issue can be\nreproduced on a smaller file system for convenience by explicitly\nturning off resize_inode. An on-line resize across an 8 GiB boundary (the\nsize of a meta block group in this setup) then leads to a corruption:\n\n dev=/dev/\u003csome_dev\u003e # should be \u003e= 16 GiB\n mkdir -p /corruption\n /sbin/mke2fs -t ext4 -b 4096 -O ^resize_inode $dev $((2 * 2**21 - 2**15))\n mount -t ext4 $dev /corruption\n\n dd if=/dev/zero bs=4096 of=/corruption/test count=$((2*2**21 - 4*2**15))\n sha1sum /corruption/test\n # 79d2658b39dcfd77274e435b0934028adafaab11 /corruption/test\n\n /sbin/resize2fs $dev $((2*2**21))\n # drop page cache to force reload the block from disk\n echo 1 \u003e /proc/sys/vm/drop_caches\n\n sha1sum /corruption/test\n # 3c2abc63cbf1a94c9e6977e0fbd72cd832c4d5c3 /corruption/test\n\n2^21 = 2^15*2^6 equals 8 GiB whereof 2^15 is the number of blocks per\nblock group and 2^6 are the number of block groups that make a meta\nblock group.\n\nThe last checksum might be different depending on how the file is laid\nout across the physical blocks. The actual corruption occurs at physical\nblock 63*2^15 = 2064384 which would be the location of the backup of the\nmeta block group\u0027s block descriptor. During the on-line resize the file\nsystem will be converted to meta_bg starting at s_first_meta_bg which is\n2 in the example - meaning all block groups after 16 GiB. However, in\next4_flex_group_add we might add block groups that are not part of the\nfirst meta block group yet. In the reproducer we achieved this by\nsubstracting the size of a whole block group from the point where the\nmeta block group would start. This must be considered when updating the\nbackup block group descriptors to follow the non-meta_bg layout. The fix\nis to add a test whether the group to add is already part of the meta\nblock group or not.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35807",
"url": "https://www.suse.com/security/cve/CVE-2024-35807"
},
{
"category": "external",
"summary": "SUSE Bug 1224735 for CVE-2024-35807",
"url": "https://bugzilla.suse.com/1224735"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-35807"
},
{
"cve": "CVE-2024-35822",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35822"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: udc: remove warning when queue disabled ep\n\nIt is possible trigger below warning message from mass storage function,\n\nWARNING: CPU: 6 PID: 3839 at drivers/usb/gadget/udc/core.c:294 usb_ep_queue+0x7c/0x104\npc : usb_ep_queue+0x7c/0x104\nlr : fsg_main_thread+0x494/0x1b3c\n\nRoot cause is mass storage function try to queue request from main thread,\nbut other thread may already disable ep when function disable.\n\nAs there is no function failure in the driver, in order to avoid effort\nto fix warning, change WARN_ON_ONCE() in usb_ep_queue() to pr_debug().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35822",
"url": "https://www.suse.com/security/cve/CVE-2024-35822"
},
{
"category": "external",
"summary": "SUSE Bug 1224739 for CVE-2024-35822",
"url": "https://bugzilla.suse.com/1224739"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "low"
}
],
"title": "CVE-2024-35822"
},
{
"cve": "CVE-2024-35835",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35835"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: fix a double-free in arfs_create_groups\n\nWhen `in` allocated by kvzalloc fails, arfs_create_groups will free\nft-\u003eg and return an error. However, arfs_create_table, the only caller of\narfs_create_groups, will hold this error and call to\nmlx5e_destroy_flow_table, in which the ft-\u003eg will be freed again.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35835",
"url": "https://www.suse.com/security/cve/CVE-2024-35835"
},
{
"category": "external",
"summary": "SUSE Bug 1224605 for CVE-2024-35835",
"url": "https://bugzilla.suse.com/1224605"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-35835"
},
{
"cve": "CVE-2024-35862",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35862"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix potential UAF in smb2_is_network_name_deleted()\n\nSkip sessions that are being teared down (status == SES_EXITING) to\navoid UAF.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35862",
"url": "https://www.suse.com/security/cve/CVE-2024-35862"
},
{
"category": "external",
"summary": "SUSE Bug 1224764 for CVE-2024-35862",
"url": "https://bugzilla.suse.com/1224764"
},
{
"category": "external",
"summary": "SUSE Bug 1225311 for CVE-2024-35862",
"url": "https://bugzilla.suse.com/1225311"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "important"
}
],
"title": "CVE-2024-35862"
},
{
"cve": "CVE-2024-35863",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35863"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix potential UAF in is_valid_oplock_break()\n\nSkip sessions that are being teared down (status == SES_EXITING) to\navoid UAF.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35863",
"url": "https://www.suse.com/security/cve/CVE-2024-35863"
},
{
"category": "external",
"summary": "SUSE Bug 1224763 for CVE-2024-35863",
"url": "https://bugzilla.suse.com/1224763"
},
{
"category": "external",
"summary": "SUSE Bug 1225011 for CVE-2024-35863",
"url": "https://bugzilla.suse.com/1225011"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "important"
}
],
"title": "CVE-2024-35863"
},
{
"cve": "CVE-2024-35864",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35864"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix potential UAF in smb2_is_valid_lease_break()\n\nSkip sessions that are being teared down (status == SES_EXITING) to\navoid UAF.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35864",
"url": "https://www.suse.com/security/cve/CVE-2024-35864"
},
{
"category": "external",
"summary": "SUSE Bug 1224765 for CVE-2024-35864",
"url": "https://bugzilla.suse.com/1224765"
},
{
"category": "external",
"summary": "SUSE Bug 1225309 for CVE-2024-35864",
"url": "https://bugzilla.suse.com/1225309"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "important"
}
],
"title": "CVE-2024-35864"
},
{
"cve": "CVE-2024-35865",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35865"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix potential UAF in smb2_is_valid_oplock_break()\n\nSkip sessions that are being teared down (status == SES_EXITING) to\navoid UAF.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35865",
"url": "https://www.suse.com/security/cve/CVE-2024-35865"
},
{
"category": "external",
"summary": "SUSE Bug 1224668 for CVE-2024-35865",
"url": "https://bugzilla.suse.com/1224668"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-35865"
},
{
"cve": "CVE-2024-35867",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35867"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix potential UAF in cifs_stats_proc_show()\n\nSkip sessions that are being teared down (status == SES_EXITING) to\navoid UAF.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35867",
"url": "https://www.suse.com/security/cve/CVE-2024-35867"
},
{
"category": "external",
"summary": "SUSE Bug 1224664 for CVE-2024-35867",
"url": "https://bugzilla.suse.com/1224664"
},
{
"category": "external",
"summary": "SUSE Bug 1225012 for CVE-2024-35867",
"url": "https://bugzilla.suse.com/1225012"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "important"
}
],
"title": "CVE-2024-35867"
},
{
"cve": "CVE-2024-35868",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35868"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix potential UAF in cifs_stats_proc_write()\n\nSkip sessions that are being teared down (status == SES_EXITING) to\navoid UAF.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35868",
"url": "https://www.suse.com/security/cve/CVE-2024-35868"
},
{
"category": "external",
"summary": "SUSE Bug 1224678 for CVE-2024-35868",
"url": "https://bugzilla.suse.com/1224678"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-35868"
},
{
"cve": "CVE-2024-35870",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35870"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix UAF in smb2_reconnect_server()\n\nThe UAF bug is due to smb2_reconnect_server() accessing a session that\nis already being teared down by another thread that is executing\n__cifs_put_smb_ses(). This can happen when (a) the client has\nconnection to the server but no session or (b) another thread ends up\nsetting @ses-\u003eses_status again to something different than\nSES_EXITING.\n\nTo fix this, we need to make sure to unconditionally set\n@ses-\u003eses_status to SES_EXITING and prevent any other threads from\nsetting a new status while we\u0027re still tearing it down.\n\nThe following can be reproduced by adding some delay to right after\nthe ipc is freed in __cifs_put_smb_ses() - which will give\nsmb2_reconnect_server() worker a chance to run and then accessing\n@ses-\u003eipc:\n\nkinit ...\nmount.cifs //srv/share /mnt/1 -o sec=krb5,nohandlecache,echo_interval=10\n[disconnect srv]\nls /mnt/1 \u0026\u003e/dev/null\nsleep 30\nkdestroy\n[reconnect srv]\nsleep 10\numount /mnt/1\n...\nCIFS: VFS: Verify user has a krb5 ticket and keyutils is installed\nCIFS: VFS: \\\\srv Send error in SessSetup = -126\nCIFS: VFS: Verify user has a krb5 ticket and keyutils is installed\nCIFS: VFS: \\\\srv Send error in SessSetup = -126\ngeneral protection fault, probably for non-canonical address\n0x6b6b6b6b6b6b6b6b: 0000 [#1] PREEMPT SMP NOPTI\nCPU: 3 PID: 50 Comm: kworker/3:1 Not tainted 6.9.0-rc2 #1\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-1.fc39\n04/01/2014\nWorkqueue: cifsiod smb2_reconnect_server [cifs]\nRIP: 0010:__list_del_entry_valid_or_report+0x33/0xf0\nCode: 4f 08 48 85 d2 74 42 48 85 c9 74 59 48 b8 00 01 00 00 00 00 ad\nde 48 39 c2 74 61 48 b8 22 01 00 00 00 00 74 69 \u003c48\u003e 8b 01 48 39 f8 75\n7b 48 8b 72 08 48 39 c6 0f 85 88 00 00 00 b8\nRSP: 0018:ffffc900001bfd70 EFLAGS: 00010a83\nRAX: dead000000000122 RBX: ffff88810da53838 RCX: 6b6b6b6b6b6b6b6b\nRDX: 6b6b6b6b6b6b6b6b RSI: ffffffffc02f6878 RDI: ffff88810da53800\nRBP: ffff88810da53800 R08: 0000000000000001 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000001 R12: ffff88810c064000\nR13: 0000000000000001 R14: ffff88810c064000 R15: ffff8881039cc000\nFS: 0000000000000000(0000) GS:ffff888157c00000(0000)\nknlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007fe3728b1000 CR3: 000000010caa4000 CR4: 0000000000750ef0\nPKRU: 55555554\nCall Trace:\n \u003cTASK\u003e\n ? die_addr+0x36/0x90\n ? exc_general_protection+0x1c1/0x3f0\n ? asm_exc_general_protection+0x26/0x30\n ? __list_del_entry_valid_or_report+0x33/0xf0\n __cifs_put_smb_ses+0x1ae/0x500 [cifs]\n smb2_reconnect_server+0x4ed/0x710 [cifs]\n process_one_work+0x205/0x6b0\n worker_thread+0x191/0x360\n ? __pfx_worker_thread+0x10/0x10\n kthread+0xe2/0x110\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x34/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35870",
"url": "https://www.suse.com/security/cve/CVE-2024-35870"
},
{
"category": "external",
"summary": "SUSE Bug 1224672 for CVE-2024-35870",
"url": "https://bugzilla.suse.com/1224672"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-35870"
},
{
"cve": "CVE-2024-35886",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35886"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: Fix infinite recursion in fib6_dump_done().\n\nsyzkaller reported infinite recursive calls of fib6_dump_done() during\nnetlink socket destruction. [1]\n\nFrom the log, syzkaller sent an AF_UNSPEC RTM_GETROUTE message, and then\nthe response was generated. The following recvmmsg() resumed the dump\nfor IPv6, but the first call of inet6_dump_fib() failed at kzalloc() due\nto the fault injection. [0]\n\n 12:01:34 executing program 3:\n r0 = socket$nl_route(0x10, 0x3, 0x0)\n sendmsg$nl_route(r0, ... snip ...)\n recvmmsg(r0, ... snip ...) (fail_nth: 8)\n\nHere, fib6_dump_done() was set to nlk_sk(sk)-\u003ecb.done, and the next call\nof inet6_dump_fib() set it to nlk_sk(sk)-\u003ecb.args[3]. syzkaller stopped\nreceiving the response halfway through, and finally netlink_sock_destruct()\ncalled nlk_sk(sk)-\u003ecb.done().\n\nfib6_dump_done() calls fib6_dump_end() and nlk_sk(sk)-\u003ecb.done() if it\nis still not NULL. fib6_dump_end() rewrites nlk_sk(sk)-\u003ecb.done() by\nnlk_sk(sk)-\u003ecb.args[3], but it has the same function, not NULL, calling\nitself recursively and hitting the stack guard page.\n\nTo avoid the issue, let\u0027s set the destructor after kzalloc().\n\n[0]:\nFAULT_INJECTION: forcing a failure.\nname failslab, interval 1, probability 0, space 0, times 0\nCPU: 1 PID: 432110 Comm: syz-executor.3 Not tainted 6.8.0-12821-g537c2e91d354-dirty #11\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl (lib/dump_stack.c:117)\n should_fail_ex (lib/fault-inject.c:52 lib/fault-inject.c:153)\n should_failslab (mm/slub.c:3733)\n kmalloc_trace (mm/slub.c:3748 mm/slub.c:3827 mm/slub.c:3992)\n inet6_dump_fib (./include/linux/slab.h:628 ./include/linux/slab.h:749 net/ipv6/ip6_fib.c:662)\n rtnl_dump_all (net/core/rtnetlink.c:4029)\n netlink_dump (net/netlink/af_netlink.c:2269)\n netlink_recvmsg (net/netlink/af_netlink.c:1988)\n ____sys_recvmsg (net/socket.c:1046 net/socket.c:2801)\n ___sys_recvmsg (net/socket.c:2846)\n do_recvmmsg (net/socket.c:2943)\n __x64_sys_recvmmsg (net/socket.c:3041 net/socket.c:3034 net/socket.c:3034)\n\n[1]:\nBUG: TASK stack guard page was hit at 00000000f2fa9af1 (stack is 00000000b7912430..000000009a436beb)\nstack guard page: 0000 [#1] PREEMPT SMP KASAN\nCPU: 1 PID: 223719 Comm: kworker/1:3 Not tainted 6.8.0-12821-g537c2e91d354-dirty #11\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\nWorkqueue: events netlink_sock_destruct_work\nRIP: 0010:fib6_dump_done (net/ipv6/ip6_fib.c:570)\nCode: 3c 24 e8 f3 e9 51 fd e9 28 fd ff ff 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 f3 0f 1e fa 41 57 41 56 41 55 41 54 55 48 89 fd \u003c53\u003e 48 8d 5d 60 e8 b6 4d 07 fd 48 89 da 48 b8 00 00 00 00 00 fc ff\nRSP: 0018:ffffc9000d980000 EFLAGS: 00010293\nRAX: 0000000000000000 RBX: ffffffff84405990 RCX: ffffffff844059d3\nRDX: ffff8881028e0000 RSI: ffffffff84405ac2 RDI: ffff88810c02f358\nRBP: ffff88810c02f358 R08: 0000000000000007 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000224 R12: 0000000000000000\nR13: ffff888007c82c78 R14: ffff888007c82c68 R15: ffff888007c82c68\nFS: 0000000000000000(0000) GS:ffff88811b100000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: ffffc9000d97fff8 CR3: 0000000102309002 CR4: 0000000000770ef0\nPKRU: 55555554\nCall Trace:\n \u003c#DF\u003e\n \u003c/#DF\u003e\n \u003cTASK\u003e\n fib6_dump_done (net/ipv6/ip6_fib.c:572 (discriminator 1))\n fib6_dump_done (net/ipv6/ip6_fib.c:572 (discriminator 1))\n ...\n fib6_dump_done (net/ipv6/ip6_fib.c:572 (discriminator 1))\n fib6_dump_done (net/ipv6/ip6_fib.c:572 (discriminator 1))\n netlink_sock_destruct (net/netlink/af_netlink.c:401)\n __sk_destruct (net/core/sock.c:2177 (discriminator 2))\n sk_destruct (net/core/sock.c:2224)\n __sk_free (net/core/sock.c:2235)\n sk_free (net/core/sock.c:2246)\n process_one_work (kernel/workqueue.c:3259)\n worker_thread (kernel/workqueue.c:3329 kernel/workqueue.\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35886",
"url": "https://www.suse.com/security/cve/CVE-2024-35886"
},
{
"category": "external",
"summary": "SUSE Bug 1224670 for CVE-2024-35886",
"url": "https://bugzilla.suse.com/1224670"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-35886"
},
{
"cve": "CVE-2024-35896",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35896"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: validate user input for expected length\n\nI got multiple syzbot reports showing old bugs exposed\nby BPF after commit 20f2505fb436 (\"bpf: Try to avoid kzalloc\nin cgroup/{s,g}etsockopt\")\n\nsetsockopt() @optlen argument should be taken into account\nbefore copying data.\n\n BUG: KASAN: slab-out-of-bounds in copy_from_sockptr_offset include/linux/sockptr.h:49 [inline]\n BUG: KASAN: slab-out-of-bounds in copy_from_sockptr include/linux/sockptr.h:55 [inline]\n BUG: KASAN: slab-out-of-bounds in do_replace net/ipv4/netfilter/ip_tables.c:1111 [inline]\n BUG: KASAN: slab-out-of-bounds in do_ipt_set_ctl+0x902/0x3dd0 net/ipv4/netfilter/ip_tables.c:1627\nRead of size 96 at addr ffff88802cd73da0 by task syz-executor.4/7238\n\nCPU: 1 PID: 7238 Comm: syz-executor.4 Not tainted 6.9.0-rc2-next-20240403-syzkaller #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:114\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n kasan_check_range+0x282/0x290 mm/kasan/generic.c:189\n __asan_memcpy+0x29/0x70 mm/kasan/shadow.c:105\n copy_from_sockptr_offset include/linux/sockptr.h:49 [inline]\n copy_from_sockptr include/linux/sockptr.h:55 [inline]\n do_replace net/ipv4/netfilter/ip_tables.c:1111 [inline]\n do_ipt_set_ctl+0x902/0x3dd0 net/ipv4/netfilter/ip_tables.c:1627\n nf_setsockopt+0x295/0x2c0 net/netfilter/nf_sockopt.c:101\n do_sock_setsockopt+0x3af/0x720 net/socket.c:2311\n __sys_setsockopt+0x1ae/0x250 net/socket.c:2334\n __do_sys_setsockopt net/socket.c:2343 [inline]\n __se_sys_setsockopt net/socket.c:2340 [inline]\n __x64_sys_setsockopt+0xb5/0xd0 net/socket.c:2340\n do_syscall_64+0xfb/0x240\n entry_SYSCALL_64_after_hwframe+0x72/0x7a\nRIP: 0033:0x7fd22067dde9\nCode: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007fd21f9ff0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036\nRAX: ffffffffffffffda RBX: 00007fd2207abf80 RCX: 00007fd22067dde9\nRDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000003\nRBP: 00007fd2206ca47a R08: 0000000000000001 R09: 0000000000000000\nR10: 0000000020000880 R11: 0000000000000246 R12: 0000000000000000\nR13: 000000000000000b R14: 00007fd2207abf80 R15: 00007ffd2d0170d8\n \u003c/TASK\u003e\n\nAllocated by task 7238:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n poison_kmalloc_redzone mm/kasan/common.c:370 [inline]\n __kasan_kmalloc+0x98/0xb0 mm/kasan/common.c:387\n kasan_kmalloc include/linux/kasan.h:211 [inline]\n __do_kmalloc_node mm/slub.c:4069 [inline]\n __kmalloc_noprof+0x200/0x410 mm/slub.c:4082\n kmalloc_noprof include/linux/slab.h:664 [inline]\n __cgroup_bpf_run_filter_setsockopt+0xd47/0x1050 kernel/bpf/cgroup.c:1869\n do_sock_setsockopt+0x6b4/0x720 net/socket.c:2293\n __sys_setsockopt+0x1ae/0x250 net/socket.c:2334\n __do_sys_setsockopt net/socket.c:2343 [inline]\n __se_sys_setsockopt net/socket.c:2340 [inline]\n __x64_sys_setsockopt+0xb5/0xd0 net/socket.c:2340\n do_syscall_64+0xfb/0x240\n entry_SYSCALL_64_after_hwframe+0x72/0x7a\n\nThe buggy address belongs to the object at ffff88802cd73da0\n which belongs to the cache kmalloc-8 of size 8\nThe buggy address is located 0 bytes inside of\n allocated 1-byte region [ffff88802cd73da0, ffff88802cd73da1)\n\nThe buggy address belongs to the physical page:\npage: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff88802cd73020 pfn:0x2cd73\nflags: 0xfff80000000000(node=0|zone=1|lastcpupid=0xfff)\npage_type: 0xffffefff(slab)\nraw: 00fff80000000000 ffff888015041280 dead000000000100 dead000000000122\nraw: ffff88802cd73020 000000008080007f 00000001ffffefff 00\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35896",
"url": "https://www.suse.com/security/cve/CVE-2024-35896"
},
{
"category": "external",
"summary": "SUSE Bug 1224662 for CVE-2024-35896",
"url": "https://bugzilla.suse.com/1224662"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-35896"
},
{
"cve": "CVE-2024-35922",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35922"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbmon: prevent division by zero in fb_videomode_from_videomode()\n\nThe expression htotal * vtotal can have a zero value on\noverflow. It is necessary to prevent division by zero like in\nfb_var_to_videomode().\n\nFound by Linux Verification Center (linuxtesting.org) with Svace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35922",
"url": "https://www.suse.com/security/cve/CVE-2024-35922"
},
{
"category": "external",
"summary": "SUSE Bug 1224660 for CVE-2024-35922",
"url": "https://bugzilla.suse.com/1224660"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-35922"
},
{
"cve": "CVE-2024-35925",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35925"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock: prevent division by zero in blk_rq_stat_sum()\n\nThe expression dst-\u003enr_samples + src-\u003enr_samples may\nhave zero value on overflow. It is necessary to add\na check to avoid division by zero.\n\nFound by Linux Verification Center (linuxtesting.org) with Svace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35925",
"url": "https://www.suse.com/security/cve/CVE-2024-35925"
},
{
"category": "external",
"summary": "SUSE Bug 1224661 for CVE-2024-35925",
"url": "https://bugzilla.suse.com/1224661"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-35925"
},
{
"cve": "CVE-2024-35930",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35930"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: lpfc: Fix possible memory leak in lpfc_rcv_padisc()\n\nThe call to lpfc_sli4_resume_rpi() in lpfc_rcv_padisc() may return an\nunsuccessful status. In such cases, the elsiocb is not issued, the\ncompletion is not called, and thus the elsiocb resource is leaked.\n\nCheck return value after calling lpfc_sli4_resume_rpi() and conditionally\nrelease the elsiocb resource.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35930",
"url": "https://www.suse.com/security/cve/CVE-2024-35930"
},
{
"category": "external",
"summary": "SUSE Bug 1224651 for CVE-2024-35930",
"url": "https://bugzilla.suse.com/1224651"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-35930"
},
{
"cve": "CVE-2024-35950",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35950"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/client: Fully protect modes[] with dev-\u003emode_config.mutex\n\nThe modes[] array contains pointers to modes on the connectors\u0027\nmode lists, which are protected by dev-\u003emode_config.mutex.\nThus we need to extend modes[] the same protection or by the\ntime we use it the elements may already be pointing to\nfreed/reused memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35950",
"url": "https://www.suse.com/security/cve/CVE-2024-35950"
},
{
"category": "external",
"summary": "SUSE Bug 1224703 for CVE-2024-35950",
"url": "https://bugzilla.suse.com/1224703"
},
{
"category": "external",
"summary": "SUSE Bug 1225310 for CVE-2024-35950",
"url": "https://bugzilla.suse.com/1225310"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-35950"
},
{
"cve": "CVE-2024-35956",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35956"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: qgroup: fix qgroup prealloc rsv leak in subvolume operations\n\nCreate subvolume, create snapshot and delete subvolume all use\nbtrfs_subvolume_reserve_metadata() to reserve metadata for the changes\ndone to the parent subvolume\u0027s fs tree, which cannot be mediated in the\nnormal way via start_transaction. When quota groups (squota or qgroups)\nare enabled, this reserves qgroup metadata of type PREALLOC. Once the\noperation is associated to a transaction, we convert PREALLOC to\nPERTRANS, which gets cleared in bulk at the end of the transaction.\n\nHowever, the error paths of these three operations were not implementing\nthis lifecycle correctly. They unconditionally converted the PREALLOC to\nPERTRANS in a generic cleanup step regardless of errors or whether the\noperation was fully associated to a transaction or not. This resulted in\nerror paths occasionally converting this rsv to PERTRANS without calling\nrecord_root_in_trans successfully, which meant that unless that root got\nrecorded in the transaction by some other thread, the end of the\ntransaction would not free that root\u0027s PERTRANS, leaking it. Ultimately,\nthis resulted in hitting a WARN in CONFIG_BTRFS_DEBUG builds at unmount\nfor the leaked reservation.\n\nThe fix is to ensure that every qgroup PREALLOC reservation observes the\nfollowing properties:\n\n1. any failure before record_root_in_trans is called successfully\n results in freeing the PREALLOC reservation.\n2. after record_root_in_trans, we convert to PERTRANS, and now the\n transaction owns freeing the reservation.\n\nThis patch enforces those properties on the three operations. Without\nit, generic/269 with squotas enabled at mkfs time would fail in ~5-10\nruns on my system. With this patch, it ran successfully 1000 times in a\nrow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35956",
"url": "https://www.suse.com/security/cve/CVE-2024-35956"
},
{
"category": "external",
"summary": "SUSE Bug 1224674 for CVE-2024-35956",
"url": "https://bugzilla.suse.com/1224674"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-35956"
},
{
"cve": "CVE-2024-35958",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35958"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ena: Fix incorrect descriptor free behavior\n\nENA has two types of TX queues:\n- queues which only process TX packets arriving from the network stack\n- queues which only process TX packets forwarded to it by XDP_REDIRECT\n or XDP_TX instructions\n\nThe ena_free_tx_bufs() cycles through all descriptors in a TX queue\nand unmaps + frees every descriptor that hasn\u0027t been acknowledged yet\nby the device (uncompleted TX transactions).\nThe function assumes that the processed TX queue is necessarily from\nthe first category listed above and ends up using napi_consume_skb()\nfor descriptors belonging to an XDP specific queue.\n\nThis patch solves a bug in which, in case of a VF reset, the\ndescriptors aren\u0027t freed correctly, leading to crashes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35958",
"url": "https://www.suse.com/security/cve/CVE-2024-35958"
},
{
"category": "external",
"summary": "SUSE Bug 1224677 for CVE-2024-35958",
"url": "https://bugzilla.suse.com/1224677"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-35958"
},
{
"cve": "CVE-2024-35960",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35960"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Properly link new fs rules into the tree\n\nPreviously, add_rule_fg would only add newly created rules from the\nhandle into the tree when they had a refcount of 1. On the other hand,\ncreate_flow_handle tries hard to find and reference already existing\nidentical rules instead of creating new ones.\n\nThese two behaviors can result in a situation where create_flow_handle\n1) creates a new rule and references it, then\n2) in a subsequent step during the same handle creation references it\n again,\nresulting in a rule with a refcount of 2 that is not linked into the\ntree, will have a NULL parent and root and will result in a crash when\nthe flow group is deleted because del_sw_hw_rule, invoked on rule\ndeletion, assumes node-\u003eparent is != NULL.\n\nThis happened in the wild, due to another bug related to incorrect\nhandling of duplicate pkt_reformat ids, which lead to the code in\ncreate_flow_handle incorrectly referencing a just-added rule in the same\nflow handle, resulting in the problem described above. Full details are\nat [1].\n\nThis patch changes add_rule_fg to add new rules without parents into\nthe tree, properly initializing them and avoiding the crash. This makes\nit more consistent with how rules are added to an FTE in\ncreate_flow_handle.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35960",
"url": "https://www.suse.com/security/cve/CVE-2024-35960"
},
{
"category": "external",
"summary": "SUSE Bug 1224588 for CVE-2024-35960",
"url": "https://bugzilla.suse.com/1224588"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-35960"
},
{
"cve": "CVE-2024-35962",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35962"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: complete validation of user input\n\nIn my recent commit, I missed that do_replace() handlers\nuse copy_from_sockptr() (which I fixed), followed\nby unsafe copy_from_sockptr_offset() calls.\n\nIn all functions, we can perform the @optlen validation\nbefore even calling xt_alloc_table_info() with the following\ncheck:\n\nif ((u64)optlen \u003c (u64)tmp.size + sizeof(tmp))\n return -EINVAL;",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35962",
"url": "https://www.suse.com/security/cve/CVE-2024-35962"
},
{
"category": "external",
"summary": "SUSE Bug 1224583 for CVE-2024-35962",
"url": "https://bugzilla.suse.com/1224583"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-35962"
},
{
"cve": "CVE-2024-35976",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35976"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxsk: validate user input for XDP_{UMEM|COMPLETION}_FILL_RING\n\nsyzbot reported an illegal copy in xsk_setsockopt() [1]\n\nMake sure to validate setsockopt() @optlen parameter.\n\n[1]\n\n BUG: KASAN: slab-out-of-bounds in copy_from_sockptr_offset include/linux/sockptr.h:49 [inline]\n BUG: KASAN: slab-out-of-bounds in copy_from_sockptr include/linux/sockptr.h:55 [inline]\n BUG: KASAN: slab-out-of-bounds in xsk_setsockopt+0x909/0xa40 net/xdp/xsk.c:1420\nRead of size 4 at addr ffff888028c6cde3 by task syz-executor.0/7549\n\nCPU: 0 PID: 7549 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-08951-gfe46a7dd189e #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:114\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n copy_from_sockptr_offset include/linux/sockptr.h:49 [inline]\n copy_from_sockptr include/linux/sockptr.h:55 [inline]\n xsk_setsockopt+0x909/0xa40 net/xdp/xsk.c:1420\n do_sock_setsockopt+0x3af/0x720 net/socket.c:2311\n __sys_setsockopt+0x1ae/0x250 net/socket.c:2334\n __do_sys_setsockopt net/socket.c:2343 [inline]\n __se_sys_setsockopt net/socket.c:2340 [inline]\n __x64_sys_setsockopt+0xb5/0xd0 net/socket.c:2340\n do_syscall_64+0xfb/0x240\n entry_SYSCALL_64_after_hwframe+0x6d/0x75\nRIP: 0033:0x7fb40587de69\nCode: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007fb40665a0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036\nRAX: ffffffffffffffda RBX: 00007fb4059abf80 RCX: 00007fb40587de69\nRDX: 0000000000000005 RSI: 000000000000011b RDI: 0000000000000006\nRBP: 00007fb4058ca47a R08: 0000000000000002 R09: 0000000000000000\nR10: 0000000020001980 R11: 0000000000000246 R12: 0000000000000000\nR13: 000000000000000b R14: 00007fb4059abf80 R15: 00007fff57ee4d08\n \u003c/TASK\u003e\n\nAllocated by task 7549:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n poison_kmalloc_redzone mm/kasan/common.c:370 [inline]\n __kasan_kmalloc+0x98/0xb0 mm/kasan/common.c:387\n kasan_kmalloc include/linux/kasan.h:211 [inline]\n __do_kmalloc_node mm/slub.c:3966 [inline]\n __kmalloc+0x233/0x4a0 mm/slub.c:3979\n kmalloc include/linux/slab.h:632 [inline]\n __cgroup_bpf_run_filter_setsockopt+0xd2f/0x1040 kernel/bpf/cgroup.c:1869\n do_sock_setsockopt+0x6b4/0x720 net/socket.c:2293\n __sys_setsockopt+0x1ae/0x250 net/socket.c:2334\n __do_sys_setsockopt net/socket.c:2343 [inline]\n __se_sys_setsockopt net/socket.c:2340 [inline]\n __x64_sys_setsockopt+0xb5/0xd0 net/socket.c:2340\n do_syscall_64+0xfb/0x240\n entry_SYSCALL_64_after_hwframe+0x6d/0x75\n\nThe buggy address belongs to the object at ffff888028c6cde0\n which belongs to the cache kmalloc-8 of size 8\nThe buggy address is located 1 bytes to the right of\n allocated 2-byte region [ffff888028c6cde0, ffff888028c6cde2)\n\nThe buggy address belongs to the physical page:\npage:ffffea0000a31b00 refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888028c6c9c0 pfn:0x28c6c\nanon flags: 0xfff00000000800(slab|node=0|zone=1|lastcpupid=0x7ff)\npage_type: 0xffffffff()\nraw: 00fff00000000800 ffff888014c41280 0000000000000000 dead000000000001\nraw: ffff888028c6c9c0 0000000080800057 00000001ffffffff 0000000000000000\npage dumped because: kasan: bad access detected\npage_owner tracks the page as allocated\npage last allocated via order 0, migratetype Unmovable, gfp_mask 0x112cc0(GFP_USER|__GFP_NOWARN|__GFP_NORETRY), pid 6648, tgid 6644 (syz-executor.0), ts 133906047828, free_ts 133859922223\n set_page_owner include/linux/page_owner.h:31 [inline]\n post_alloc_hook+0x1ea/0x210 mm/page_alloc.c:1533\n prep_new_page mm/page_alloc.c:\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35976",
"url": "https://www.suse.com/security/cve/CVE-2024-35976"
},
{
"category": "external",
"summary": "SUSE Bug 1224575 for CVE-2024-35976",
"url": "https://bugzilla.suse.com/1224575"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-35976"
},
{
"cve": "CVE-2024-35979",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35979"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nraid1: fix use-after-free for original bio in raid1_write_request()\n\nr1_bio-\u003ebios[] is used to record new bios that will be issued to\nunderlying disks, however, in raid1_write_request(), r1_bio-\u003ebios[]\nwill set to the original bio temporarily. Meanwhile, if blocked rdev\nis set, free_r1bio() will be called causing that all r1_bio-\u003ebios[]\nto be freed:\n\nraid1_write_request()\n r1_bio = alloc_r1bio(mddev, bio); -\u003e r1_bio-\u003ebios[] is NULL\n for (i = 0; i \u003c disks; i++) -\u003e for each rdev in conf\n // first rdev is normal\n r1_bio-\u003ebios[0] = bio; -\u003e set to original bio\n // second rdev is blocked\n if (test_bit(Blocked, \u0026rdev-\u003eflags))\n break\n\n if (blocked_rdev)\n free_r1bio()\n put_all_bios()\n bio_put(r1_bio-\u003ebios[0]) -\u003e original bio is freed\n\nTest scripts:\n\nmdadm -CR /dev/md0 -l1 -n4 /dev/sd[abcd] --assume-clean\nfio -filename=/dev/md0 -ioengine=libaio -rw=write -bs=4k -numjobs=1 \\\n -iodepth=128 -name=test -direct=1\necho blocked \u003e /sys/block/md0/md/rd2/state\n\nTest result:\n\nBUG bio-264 (Not tainted): Object already free\n-----------------------------------------------------------------------------\n\nAllocated in mempool_alloc_slab+0x24/0x50 age=1 cpu=1 pid=869\n kmem_cache_alloc+0x324/0x480\n mempool_alloc_slab+0x24/0x50\n mempool_alloc+0x6e/0x220\n bio_alloc_bioset+0x1af/0x4d0\n blkdev_direct_IO+0x164/0x8a0\n blkdev_write_iter+0x309/0x440\n aio_write+0x139/0x2f0\n io_submit_one+0x5ca/0xb70\n __do_sys_io_submit+0x86/0x270\n __x64_sys_io_submit+0x22/0x30\n do_syscall_64+0xb1/0x210\n entry_SYSCALL_64_after_hwframe+0x6c/0x74\nFreed in mempool_free_slab+0x1f/0x30 age=1 cpu=1 pid=869\n kmem_cache_free+0x28c/0x550\n mempool_free_slab+0x1f/0x30\n mempool_free+0x40/0x100\n bio_free+0x59/0x80\n bio_put+0xf0/0x220\n free_r1bio+0x74/0xb0\n raid1_make_request+0xadf/0x1150\n md_handle_request+0xc7/0x3b0\n md_submit_bio+0x76/0x130\n __submit_bio+0xd8/0x1d0\n submit_bio_noacct_nocheck+0x1eb/0x5c0\n submit_bio_noacct+0x169/0xd40\n submit_bio+0xee/0x1d0\n blkdev_direct_IO+0x322/0x8a0\n blkdev_write_iter+0x309/0x440\n aio_write+0x139/0x2f0\n\nSince that bios for underlying disks are not allocated yet, fix this\nproblem by using mempool_free() directly to free the r1_bio.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35979",
"url": "https://www.suse.com/security/cve/CVE-2024-35979"
},
{
"category": "external",
"summary": "SUSE Bug 1224572 for CVE-2024-35979",
"url": "https://bugzilla.suse.com/1224572"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-35979"
},
{
"cve": "CVE-2024-35997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35997"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: i2c-hid: remove I2C_HID_READ_PENDING flag to prevent lock-up\n\nThe flag I2C_HID_READ_PENDING is used to serialize I2C operations.\nHowever, this is not necessary, because I2C core already has its own\nlocking for that.\n\nMore importantly, this flag can cause a lock-up: if the flag is set in\ni2c_hid_xfer() and an interrupt happens, the interrupt handler\n(i2c_hid_irq) will check this flag and return immediately without doing\nanything, then the interrupt handler will be invoked again in an\ninfinite loop.\n\nSince interrupt handler is an RT task, it takes over the CPU and the\nflag-clearing task never gets scheduled, thus we have a lock-up.\n\nDelete this unnecessary flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35997",
"url": "https://www.suse.com/security/cve/CVE-2024-35997"
},
{
"category": "external",
"summary": "SUSE Bug 1224552 for CVE-2024-35997",
"url": "https://bugzilla.suse.com/1224552"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-35997"
},
{
"cve": "CVE-2024-35998",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35998"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb3: fix lock ordering potential deadlock in cifs_sync_mid_result\n\nCoverity spotted that the cifs_sync_mid_result function could deadlock\n\n\"Thread deadlock (ORDER_REVERSAL) lock_order: Calling spin_lock acquires\nlock TCP_Server_Info.srv_lock while holding lock TCP_Server_Info.mid_lock\"\n\nAddresses-Coverity: 1590401 (\"Thread deadlock (ORDER_REVERSAL)\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35998",
"url": "https://www.suse.com/security/cve/CVE-2024-35998"
},
{
"category": "external",
"summary": "SUSE Bug 1224549 for CVE-2024-35998",
"url": "https://bugzilla.suse.com/1224549"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-35998"
},
{
"cve": "CVE-2024-36016",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36016"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntty: n_gsm: fix possible out-of-bounds in gsm0_receive()\n\nAssuming the following:\n- side A configures the n_gsm in basic option mode\n- side B sends the header of a basic option mode frame with data length 1\n- side A switches to advanced option mode\n- side B sends 2 data bytes which exceeds gsm-\u003elen\n Reason: gsm-\u003elen is not used in advanced option mode.\n- side A switches to basic option mode\n- side B keeps sending until gsm0_receive() writes past gsm-\u003ebuf\n Reason: Neither gsm-\u003estate nor gsm-\u003elen have been reset after\n reconfiguration.\n\nFix this by changing gsm-\u003ecount to gsm-\u003elen comparison from equal to less\nthan. Also add upper limit checks against the constant MAX_MRU in\ngsm0_receive() and gsm1_receive() to harden against memory corruption of\ngsm-\u003elen and gsm-\u003emru.\n\nAll other checks remain as we still need to limit the data according to the\nuser configuration and actual payload size.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36016",
"url": "https://www.suse.com/security/cve/CVE-2024-36016"
},
{
"category": "external",
"summary": "SUSE Bug 1225642 for CVE-2024-36016",
"url": "https://bugzilla.suse.com/1225642"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-36016"
},
{
"cve": "CVE-2024-36017",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36017"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrtnetlink: Correct nested IFLA_VF_VLAN_LIST attribute validation\n\nEach attribute inside a nested IFLA_VF_VLAN_LIST is assumed to be a\nstruct ifla_vf_vlan_info so the size of such attribute needs to be at least\nof sizeof(struct ifla_vf_vlan_info) which is 14 bytes.\nThe current size validation in do_setvfinfo is against NLA_HDRLEN (4 bytes)\nwhich is less than sizeof(struct ifla_vf_vlan_info) so this validation\nis not enough and a too small attribute might be cast to a\nstruct ifla_vf_vlan_info, this might result in an out of bands\nread access when accessing the saved (casted) entry in ivvl.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36017",
"url": "https://www.suse.com/security/cve/CVE-2024-36017"
},
{
"category": "external",
"summary": "SUSE Bug 1225681 for CVE-2024-36017",
"url": "https://bugzilla.suse.com/1225681"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-36017"
},
{
"cve": "CVE-2024-36025",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36025"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qla2xxx: Fix off by one in qla_edif_app_getstats()\n\nThe app_reply-\u003eelem[] array is allocated earlier in this function and it\nhas app_req.num_ports elements. Thus this \u003e comparison needs to be \u003e= to\nprevent memory corruption.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36025",
"url": "https://www.suse.com/security/cve/CVE-2024-36025"
},
{
"category": "external",
"summary": "SUSE Bug 1225704 for CVE-2024-36025",
"url": "https://bugzilla.suse.com/1225704"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-36025"
},
{
"cve": "CVE-2024-36479",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36479"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfpga: bridge: add owner module and take its refcount\n\nThe current implementation of the fpga bridge assumes that the low-level\nmodule registers a driver for the parent device and uses its owner pointer\nto take the module\u0027s refcount. This approach is problematic since it can\nlead to a null pointer dereference while attempting to get the bridge if\nthe parent device does not have a driver.\n\nTo address this problem, add a module owner pointer to the fpga_bridge\nstruct and use it to take the module\u0027s refcount. Modify the function for\nregistering a bridge to take an additional owner module parameter and\nrename it to avoid conflicts. Use the old function name for a helper macro\nthat automatically sets the module that registers the bridge as the owner.\nThis ensures compatibility with existing low-level control modules and\nreduces the chances of registering a bridge without setting the owner.\n\nAlso, update the documentation to keep it consistent with the new interface\nfor registering an fpga bridge.\n\nOther changes: opportunistically move put_device() from __fpga_bridge_get()\nto fpga_bridge_get() and of_fpga_bridge_get() to improve code clarity since\nthe bridge device is taken in these functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36479",
"url": "https://www.suse.com/security/cve/CVE-2024-36479"
},
{
"category": "external",
"summary": "SUSE Bug 1226949 for CVE-2024-36479",
"url": "https://bugzilla.suse.com/1226949"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-36479"
},
{
"cve": "CVE-2024-36592",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36592"
}
],
"notes": [
{
"category": "general",
"text": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36592",
"url": "https://www.suse.com/security/cve/CVE-2024-36592"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "important"
}
],
"title": "CVE-2024-36592"
},
{
"cve": "CVE-2024-36880",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36880"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: qca: add missing firmware sanity checks\n\nAdd the missing sanity checks when parsing the firmware files before\ndownloading them to avoid accessing and corrupting memory beyond the\nvmalloced buffer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36880",
"url": "https://www.suse.com/security/cve/CVE-2024-36880"
},
{
"category": "external",
"summary": "SUSE Bug 1225722 for CVE-2024-36880",
"url": "https://bugzilla.suse.com/1225722"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-36880"
},
{
"cve": "CVE-2024-36894",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36894"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: f_fs: Fix race between aio_cancel() and AIO request complete\n\nFFS based applications can utilize the aio_cancel() callback to dequeue\npending USB requests submitted to the UDC. There is a scenario where the\nFFS application issues an AIO cancel call, while the UDC is handling a\nsoft disconnect. For a DWC3 based implementation, the callstack looks\nlike the following:\n\n DWC3 Gadget FFS Application\ndwc3_gadget_soft_disconnect() ...\n --\u003e dwc3_stop_active_transfers()\n --\u003e dwc3_gadget_giveback(-ESHUTDOWN)\n --\u003e ffs_epfile_async_io_complete() ffs_aio_cancel()\n --\u003e usb_ep_free_request() --\u003e usb_ep_dequeue()\n\nThere is currently no locking implemented between the AIO completion\nhandler and AIO cancel, so the issue occurs if the completion routine is\nrunning in parallel to an AIO cancel call coming from the FFS application.\nAs the completion call frees the USB request (io_data-\u003ereq) the FFS\napplication is also referencing it for the usb_ep_dequeue() call. This can\nlead to accessing a stale/hanging pointer.\n\ncommit b566d38857fc (\"usb: gadget: f_fs: use io_data-\u003estatus consistently\")\nrelocated the usb_ep_free_request() into ffs_epfile_async_io_complete().\nHowever, in order to properly implement locking to mitigate this issue, the\nspinlock can\u0027t be added to ffs_epfile_async_io_complete(), as\nusb_ep_dequeue() (if successfully dequeuing a USB request) will call the\nfunction driver\u0027s completion handler in the same context. Hence, leading\ninto a deadlock.\n\nFix this issue by moving the usb_ep_free_request() back to\nffs_user_copy_worker(), and ensuring that it explicitly sets io_data-\u003ereq\nto NULL after freeing it within the ffs-\u003eeps_lock. This resolves the race\ncondition above, as the ffs_aio_cancel() routine will not continue\nattempting to dequeue a request that has already been freed, or the\nffs_user_copy_work() not freeing the USB request until the AIO cancel is\ndone referencing it.\n\nThis fix depends on\n commit b566d38857fc (\"usb: gadget: f_fs: use io_data-\u003estatus\n consistently\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36894",
"url": "https://www.suse.com/security/cve/CVE-2024-36894"
},
{
"category": "external",
"summary": "SUSE Bug 1225749 for CVE-2024-36894",
"url": "https://bugzilla.suse.com/1225749"
},
{
"category": "external",
"summary": "SUSE Bug 1226139 for CVE-2024-36894",
"url": "https://bugzilla.suse.com/1226139"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-36894"
},
{
"cve": "CVE-2024-36915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36915"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfc: llcp: fix nfc_llcp_setsockopt() unsafe copies\n\nsyzbot reported unsafe calls to copy_from_sockptr() [1]\n\nUse copy_safe_from_sockptr() instead.\n\n[1]\n\nBUG: KASAN: slab-out-of-bounds in copy_from_sockptr_offset include/linux/sockptr.h:49 [inline]\n BUG: KASAN: slab-out-of-bounds in copy_from_sockptr include/linux/sockptr.h:55 [inline]\n BUG: KASAN: slab-out-of-bounds in nfc_llcp_setsockopt+0x6c2/0x850 net/nfc/llcp_sock.c:255\nRead of size 4 at addr ffff88801caa1ec3 by task syz-executor459/5078\n\nCPU: 0 PID: 5078 Comm: syz-executor459 Not tainted 6.8.0-syzkaller-08951-gfe46a7dd189e #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:114\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n copy_from_sockptr_offset include/linux/sockptr.h:49 [inline]\n copy_from_sockptr include/linux/sockptr.h:55 [inline]\n nfc_llcp_setsockopt+0x6c2/0x850 net/nfc/llcp_sock.c:255\n do_sock_setsockopt+0x3b1/0x720 net/socket.c:2311\n __sys_setsockopt+0x1ae/0x250 net/socket.c:2334\n __do_sys_setsockopt net/socket.c:2343 [inline]\n __se_sys_setsockopt net/socket.c:2340 [inline]\n __x64_sys_setsockopt+0xb5/0xd0 net/socket.c:2340\n do_syscall_64+0xfd/0x240\n entry_SYSCALL_64_after_hwframe+0x6d/0x75\nRIP: 0033:0x7f7fac07fd89\nCode: 28 00 00 00 75 05 48 83 c4 28 c3 e8 91 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007fff660eb788 EFLAGS: 00000246 ORIG_RAX: 0000000000000036\nRAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7fac07fd89\nRDX: 0000000000000000 RSI: 0000000000000118 RDI: 0000000000000004\nRBP: 0000000000000000 R08: 0000000000000002 R09: 0000000000000000\nR10: 0000000020000a80 R11: 0000000000000246 R12: 0000000000000000\nR13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36915",
"url": "https://www.suse.com/security/cve/CVE-2024-36915"
},
{
"category": "external",
"summary": "SUSE Bug 1225758 for CVE-2024-36915",
"url": "https://bugzilla.suse.com/1225758"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-36915"
},
{
"cve": "CVE-2024-36917",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36917"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock: fix overflow in blk_ioctl_discard()\n\nThere is no check for overflow of \u0027start + len\u0027 in blk_ioctl_discard().\nHung task occurs if submit an discard ioctl with the following param:\n start = 0x80000000000ff000, len = 0x8000000000fff000;\nAdd the overflow validation now.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36917",
"url": "https://www.suse.com/security/cve/CVE-2024-36917"
},
{
"category": "external",
"summary": "SUSE Bug 1225770 for CVE-2024-36917",
"url": "https://bugzilla.suse.com/1225770"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-36917"
},
{
"cve": "CVE-2024-36919",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36919"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: bnx2fc: Remove spin_lock_bh while releasing resources after upload\n\nThe session resources are used by FW and driver when session is offloaded,\nonce session is uploaded these resources are not used. The lock is not\nrequired as these fields won\u0027t be used any longer. The offload and upload\ncalls are sequential, hence lock is not required.\n\nThis will suppress following BUG_ON():\n\n[ 449.843143] ------------[ cut here ]------------\n[ 449.848302] kernel BUG at mm/vmalloc.c:2727!\n[ 449.853072] invalid opcode: 0000 [#1] PREEMPT SMP PTI\n[ 449.858712] CPU: 5 PID: 1996 Comm: kworker/u24:2 Not tainted 5.14.0-118.el9.x86_64 #1\nRebooting.\n[ 449.867454] Hardware name: Dell Inc. PowerEdge R730/0WCJNT, BIOS 2.3.4 11/08/2016\n[ 449.876966] Workqueue: fc_rport_eq fc_rport_work [libfc]\n[ 449.882910] RIP: 0010:vunmap+0x2e/0x30\n[ 449.887098] Code: 00 65 8b 05 14 a2 f0 4a a9 00 ff ff 00 75 1b 55 48 89 fd e8 34 36 79 00 48 85 ed 74 0b 48 89 ef 31 f6 5d e9 14 fc ff ff 5d c3 \u003c0f\u003e 0b 0f 1f 44 00 00 41 57 41 56 49 89 ce 41 55 49 89 fd 41 54 41\n[ 449.908054] RSP: 0018:ffffb83d878b3d68 EFLAGS: 00010206\n[ 449.913887] RAX: 0000000080000201 RBX: ffff8f4355133550 RCX: 000000000d400005\n[ 449.921843] RDX: 0000000000000001 RSI: 0000000000001000 RDI: ffffb83da53f5000\n[ 449.929808] RBP: ffff8f4ac6675800 R08: ffffb83d878b3d30 R09: 00000000000efbdf\n[ 449.937774] R10: 0000000000000003 R11: ffff8f434573e000 R12: 0000000000001000\n[ 449.945736] R13: 0000000000001000 R14: ffffb83da53f5000 R15: ffff8f43d4ea3ae0\n[ 449.953701] FS: 0000000000000000(0000) GS:ffff8f529fc80000(0000) knlGS:0000000000000000\n[ 449.962732] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 449.969138] CR2: 00007f8cf993e150 CR3: 0000000efbe10003 CR4: 00000000003706e0\n[ 449.977102] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 449.985065] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 449.993028] Call Trace:\n[ 449.995756] __iommu_dma_free+0x96/0x100\n[ 450.000139] bnx2fc_free_session_resc+0x67/0x240 [bnx2fc]\n[ 450.006171] bnx2fc_upload_session+0xce/0x100 [bnx2fc]\n[ 450.011910] bnx2fc_rport_event_handler+0x9f/0x240 [bnx2fc]\n[ 450.018136] fc_rport_work+0x103/0x5b0 [libfc]\n[ 450.023103] process_one_work+0x1e8/0x3c0\n[ 450.027581] worker_thread+0x50/0x3b0\n[ 450.031669] ? rescuer_thread+0x370/0x370\n[ 450.036143] kthread+0x149/0x170\n[ 450.039744] ? set_kthread_struct+0x40/0x40\n[ 450.044411] ret_from_fork+0x22/0x30\n[ 450.048404] Modules linked in: vfat msdos fat xfs nfs_layout_nfsv41_files rpcsec_gss_krb5 auth_rpcgss nfsv4 dns_resolver dm_service_time qedf qed crc8 bnx2fc libfcoe libfc scsi_transport_fc intel_rapl_msr intel_rapl_common x86_pkg_temp_thermal intel_powerclamp dcdbas rapl intel_cstate intel_uncore mei_me pcspkr mei ipmi_ssif lpc_ich ipmi_si fuse zram ext4 mbcache jbd2 loop nfsv3 nfs_acl nfs lockd grace fscache netfs irdma ice sd_mod t10_pi sg ib_uverbs ib_core 8021q garp mrp stp llc mgag200 i2c_algo_bit drm_kms_helper syscopyarea sysfillrect sysimgblt mxm_wmi fb_sys_fops cec crct10dif_pclmul ahci crc32_pclmul bnx2x drm ghash_clmulni_intel libahci rfkill i40e libata megaraid_sas mdio wmi sunrpc lrw dm_crypt dm_round_robin dm_multipath dm_snapshot dm_bufio dm_mirror dm_region_hash dm_log dm_zero dm_mod linear raid10 raid456 async_raid6_recov async_memcpy async_pq async_xor async_tx raid6_pq libcrc32c crc32c_intel raid1 raid0 iscsi_ibft squashfs be2iscsi bnx2i cnic uio cxgb4i cxgb4 tls\n[ 450.048497] libcxgbi libcxgb qla4xxx iscsi_boot_sysfs iscsi_tcp libiscsi_tcp libiscsi scsi_transport_iscsi edd ipmi_devintf ipmi_msghandler\n[ 450.159753] ---[ end trace 712de2c57c64abc8 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36919",
"url": "https://www.suse.com/security/cve/CVE-2024-36919"
},
{
"category": "external",
"summary": "SUSE Bug 1225767 for CVE-2024-36919",
"url": "https://bugzilla.suse.com/1225767"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-36919"
},
{
"cve": "CVE-2024-36923",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36923"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/9p: fix uninitialized values during inode evict\n\nIf an iget fails due to not being able to retrieve information\nfrom the server then the inode structure is only partially\ninitialized. When the inode gets evicted, references to\nuninitialized structures (like fscache cookies) were being\nmade.\n\nThis patch checks for a bad_inode before doing anything other\nthan clearing the inode from the cache. Since the inode is\nbad, it shouldn\u0027t have any state associated with it that needs\nto be written back (and there really isn\u0027t a way to complete\nthose anyways).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36923",
"url": "https://www.suse.com/security/cve/CVE-2024-36923"
},
{
"category": "external",
"summary": "SUSE Bug 1225815 for CVE-2024-36923",
"url": "https://bugzilla.suse.com/1225815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-36923"
},
{
"cve": "CVE-2024-36934",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36934"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbna: ensure the copied buf is NUL terminated\n\nCurrently, we allocate a nbytes-sized kernel buffer and copy nbytes from\nuserspace to that buffer. Later, we use sscanf on this buffer but we don\u0027t\nensure that the string is terminated inside the buffer, this can lead to\nOOB read when using sscanf. Fix this issue by using memdup_user_nul\ninstead of memdup_user.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36934",
"url": "https://www.suse.com/security/cve/CVE-2024-36934"
},
{
"category": "external",
"summary": "SUSE Bug 1225760 for CVE-2024-36934",
"url": "https://bugzilla.suse.com/1225760"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-36934"
},
{
"cve": "CVE-2024-36938",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36938"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf, skmsg: Fix NULL pointer dereference in sk_psock_skb_ingress_enqueue\n\nFix NULL pointer data-races in sk_psock_skb_ingress_enqueue() which\nsyzbot reported [1].\n\n[1]\nBUG: KCSAN: data-race in sk_psock_drop / sk_psock_skb_ingress_enqueue\n\nwrite to 0xffff88814b3278b8 of 8 bytes by task 10724 on cpu 1:\n sk_psock_stop_verdict net/core/skmsg.c:1257 [inline]\n sk_psock_drop+0x13e/0x1f0 net/core/skmsg.c:843\n sk_psock_put include/linux/skmsg.h:459 [inline]\n sock_map_close+0x1a7/0x260 net/core/sock_map.c:1648\n unix_release+0x4b/0x80 net/unix/af_unix.c:1048\n __sock_release net/socket.c:659 [inline]\n sock_close+0x68/0x150 net/socket.c:1421\n __fput+0x2c1/0x660 fs/file_table.c:422\n __fput_sync+0x44/0x60 fs/file_table.c:507\n __do_sys_close fs/open.c:1556 [inline]\n __se_sys_close+0x101/0x1b0 fs/open.c:1541\n __x64_sys_close+0x1f/0x30 fs/open.c:1541\n do_syscall_64+0xd3/0x1d0\n entry_SYSCALL_64_after_hwframe+0x6d/0x75\n\nread to 0xffff88814b3278b8 of 8 bytes by task 10713 on cpu 0:\n sk_psock_data_ready include/linux/skmsg.h:464 [inline]\n sk_psock_skb_ingress_enqueue+0x32d/0x390 net/core/skmsg.c:555\n sk_psock_skb_ingress_self+0x185/0x1e0 net/core/skmsg.c:606\n sk_psock_verdict_apply net/core/skmsg.c:1008 [inline]\n sk_psock_verdict_recv+0x3e4/0x4a0 net/core/skmsg.c:1202\n unix_read_skb net/unix/af_unix.c:2546 [inline]\n unix_stream_read_skb+0x9e/0xf0 net/unix/af_unix.c:2682\n sk_psock_verdict_data_ready+0x77/0x220 net/core/skmsg.c:1223\n unix_stream_sendmsg+0x527/0x860 net/unix/af_unix.c:2339\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x140/0x180 net/socket.c:745\n ____sys_sendmsg+0x312/0x410 net/socket.c:2584\n ___sys_sendmsg net/socket.c:2638 [inline]\n __sys_sendmsg+0x1e9/0x280 net/socket.c:2667\n __do_sys_sendmsg net/socket.c:2676 [inline]\n __se_sys_sendmsg net/socket.c:2674 [inline]\n __x64_sys_sendmsg+0x46/0x50 net/socket.c:2674\n do_syscall_64+0xd3/0x1d0\n entry_SYSCALL_64_after_hwframe+0x6d/0x75\n\nvalue changed: 0xffffffff83d7feb0 -\u003e 0x0000000000000000\n\nReported by Kernel Concurrency Sanitizer on:\nCPU: 0 PID: 10713 Comm: syz-executor.4 Tainted: G W 6.8.0-syzkaller-08951-gfe46a7dd189e #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024\n\nPrior to this, commit 4cd12c6065df (\"bpf, sockmap: Fix NULL pointer\ndereference in sk_psock_verdict_data_ready()\") fixed one NULL pointer\nsimilarly due to no protection of saved_data_ready. Here is another\ndifferent caller causing the same issue because of the same reason. So\nwe should protect it with sk_callback_lock read lock because the writer\nside in the sk_psock_drop() uses \"write_lock_bh(\u0026sk-\u003esk_callback_lock);\".\n\nTo avoid errors that could happen in future, I move those two pairs of\nlock into the sk_psock_data_ready(), which is suggested by John Fastabend.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36938",
"url": "https://www.suse.com/security/cve/CVE-2024-36938"
},
{
"category": "external",
"summary": "SUSE Bug 1225761 for CVE-2024-36938",
"url": "https://bugzilla.suse.com/1225761"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-36938"
},
{
"cve": "CVE-2024-36940",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36940"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: core: delete incorrect free in pinctrl_enable()\n\nThe \"pctldev\" struct is allocated in devm_pinctrl_register_and_init().\nIt\u0027s a devm_ managed pointer that is freed by devm_pinctrl_dev_release(),\nso freeing it in pinctrl_enable() will lead to a double free.\n\nThe devm_pinctrl_dev_release() function frees the pindescs and destroys\nthe mutex as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36940",
"url": "https://www.suse.com/security/cve/CVE-2024-36940"
},
{
"category": "external",
"summary": "SUSE Bug 1225840 for CVE-2024-36940",
"url": "https://bugzilla.suse.com/1225840"
},
{
"category": "external",
"summary": "SUSE Bug 1225841 for CVE-2024-36940",
"url": "https://bugzilla.suse.com/1225841"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "important"
}
],
"title": "CVE-2024-36940"
},
{
"cve": "CVE-2024-36949",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36949"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\namd/amdkfd: sync all devices to wait all processes being evicted\n\nIf there are more than one device doing reset in parallel, the first\ndevice will call kfd_suspend_all_processes() to evict all processes\non all devices, this call takes time to finish. other device will\nstart reset and recover without waiting. if the process has not been\nevicted before doing recover, it will be restored, then caused page\nfault.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36949",
"url": "https://www.suse.com/security/cve/CVE-2024-36949"
},
{
"category": "external",
"summary": "SUSE Bug 1225894 for CVE-2024-36949",
"url": "https://bugzilla.suse.com/1225894"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-36949"
},
{
"cve": "CVE-2024-36950",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36950"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirewire: ohci: mask bus reset interrupts between ISR and bottom half\n\nIn the FireWire OHCI interrupt handler, if a bus reset interrupt has\noccurred, mask bus reset interrupts until bus_reset_work has serviced and\ncleared the interrupt.\n\nNormally, we always leave bus reset interrupts masked. We infer the bus\nreset from the self-ID interrupt that happens shortly thereafter. A\nscenario where we unmask bus reset interrupts was introduced in 2008 in\na007bb857e0b26f5d8b73c2ff90782d9c0972620: If\nOHCI_PARAM_DEBUG_BUSRESETS (8) is set in the debug parameter bitmask, we\nwill unmask bus reset interrupts so we can log them.\n\nirq_handler logs the bus reset interrupt. However, we can\u0027t clear the bus\nreset event flag in irq_handler, because we won\u0027t service the event until\nlater. irq_handler exits with the event flag still set. If the\ncorresponding interrupt is still unmasked, the first bus reset will\nusually freeze the system due to irq_handler being called again each\ntime it exits. This freeze can be reproduced by loading firewire_ohci\nwith \"modprobe firewire_ohci debug=-1\" (to enable all debugging output).\nApparently there are also some cases where bus_reset_work will get called\nsoon enough to clear the event, and operation will continue normally.\n\nThis freeze was first reported a few months after a007bb85 was committed,\nbut until now it was never fixed. The debug level could safely be set\nto -1 through sysfs after the module was loaded, but this would be\nineffectual in logging bus reset interrupts since they were only\nunmasked during initialization.\n\nirq_handler will now leave the event flag set but mask bus reset\ninterrupts, so irq_handler won\u0027t be called again and there will be no\nfreeze. If OHCI_PARAM_DEBUG_BUSRESETS is enabled, bus_reset_work will\nunmask the interrupt after servicing the event, so future interrupts\nwill be caught as desired.\n\nAs a side effect to this change, OHCI_PARAM_DEBUG_BUSRESETS can now be\nenabled through sysfs in addition to during initial module loading.\nHowever, when enabled through sysfs, logging of bus reset interrupts will\nbe effective only starting with the second bus reset, after\nbus_reset_work has executed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36950",
"url": "https://www.suse.com/security/cve/CVE-2024-36950"
},
{
"category": "external",
"summary": "SUSE Bug 1225895 for CVE-2024-36950",
"url": "https://bugzilla.suse.com/1225895"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-36950"
},
{
"cve": "CVE-2024-36960",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36960"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vmwgfx: Fix invalid reads in fence signaled events\n\nCorrectly set the length of the drm_event to the size of the structure\nthat\u0027s actually used.\n\nThe length of the drm_event was set to the parent structure instead of\nto the drm_vmw_event_fence which is supposed to be read. drm_read\nuses the length parameter to copy the event to the user space thus\nresuling in oob reads.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36960",
"url": "https://www.suse.com/security/cve/CVE-2024-36960"
},
{
"category": "external",
"summary": "SUSE Bug 1225872 for CVE-2024-36960",
"url": "https://bugzilla.suse.com/1225872"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-36960"
},
{
"cve": "CVE-2024-36964",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36964"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/9p: only translate RWX permissions for plain 9P2000\n\nGarbage in plain 9P2000\u0027s perm bits is allowed through, which causes it\nto be able to set (among others) the suid bit. This was presumably not\nthe intent since the unix extended bits are handled explicitly and\nconditionally on .u.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36964",
"url": "https://www.suse.com/security/cve/CVE-2024-36964"
},
{
"category": "external",
"summary": "SUSE Bug 1225866 for CVE-2024-36964",
"url": "https://bugzilla.suse.com/1225866"
},
{
"category": "external",
"summary": "SUSE Bug 1226325 for CVE-2024-36964",
"url": "https://bugzilla.suse.com/1226325"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "important"
}
],
"title": "CVE-2024-36964"
},
{
"cve": "CVE-2024-37021",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-37021"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfpga: manager: add owner module and take its refcount\n\nThe current implementation of the fpga manager assumes that the low-level\nmodule registers a driver for the parent device and uses its owner pointer\nto take the module\u0027s refcount. This approach is problematic since it can\nlead to a null pointer dereference while attempting to get the manager if\nthe parent device does not have a driver.\n\nTo address this problem, add a module owner pointer to the fpga_manager\nstruct and use it to take the module\u0027s refcount. Modify the functions for\nregistering the manager to take an additional owner module parameter and\nrename them to avoid conflicts. Use the old function names for helper\nmacros that automatically set the module that registers the manager as the\nowner. This ensures compatibility with existing low-level control modules\nand reduces the chances of registering a manager without setting the owner.\n\nAlso, update the documentation to keep it consistent with the new interface\nfor registering an fpga manager.\n\nOther changes: opportunistically move put_device() from __fpga_mgr_get() to\nfpga_mgr_get() and of_fpga_mgr_get() to improve code clarity since the\nmanager device is taken in these functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-37021",
"url": "https://www.suse.com/security/cve/CVE-2024-37021"
},
{
"category": "external",
"summary": "SUSE Bug 1226950 for CVE-2024-37021",
"url": "https://bugzilla.suse.com/1226950"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-37021"
},
{
"cve": "CVE-2024-37354",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-37354"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix crash on racing fsync and size-extending write into prealloc\n\nWe have been seeing crashes on duplicate keys in\nbtrfs_set_item_key_safe():\n\n BTRFS critical (device vdb): slot 4 key (450 108 8192) new key (450 108 8192)\n ------------[ cut here ]------------\n kernel BUG at fs/btrfs/ctree.c:2620!\n invalid opcode: 0000 [#1] PREEMPT SMP PTI\n CPU: 0 PID: 3139 Comm: xfs_io Kdump: loaded Not tainted 6.9.0 #6\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-2.fc40 04/01/2014\n RIP: 0010:btrfs_set_item_key_safe+0x11f/0x290 [btrfs]\n\nWith the following stack trace:\n\n #0 btrfs_set_item_key_safe (fs/btrfs/ctree.c:2620:4)\n #1 btrfs_drop_extents (fs/btrfs/file.c:411:4)\n #2 log_one_extent (fs/btrfs/tree-log.c:4732:9)\n #3 btrfs_log_changed_extents (fs/btrfs/tree-log.c:4955:9)\n #4 btrfs_log_inode (fs/btrfs/tree-log.c:6626:9)\n #5 btrfs_log_inode_parent (fs/btrfs/tree-log.c:7070:8)\n #6 btrfs_log_dentry_safe (fs/btrfs/tree-log.c:7171:8)\n #7 btrfs_sync_file (fs/btrfs/file.c:1933:8)\n #8 vfs_fsync_range (fs/sync.c:188:9)\n #9 vfs_fsync (fs/sync.c:202:9)\n #10 do_fsync (fs/sync.c:212:9)\n #11 __do_sys_fdatasync (fs/sync.c:225:9)\n #12 __se_sys_fdatasync (fs/sync.c:223:1)\n #13 __x64_sys_fdatasync (fs/sync.c:223:1)\n #14 do_syscall_x64 (arch/x86/entry/common.c:52:14)\n #15 do_syscall_64 (arch/x86/entry/common.c:83:7)\n #16 entry_SYSCALL_64+0xaf/0x14c (arch/x86/entry/entry_64.S:121)\n\nSo we\u0027re logging a changed extent from fsync, which is splitting an\nextent in the log tree. But this split part already exists in the tree,\ntriggering the BUG().\n\nThis is the state of the log tree at the time of the crash, dumped with\ndrgn (https://github.com/osandov/drgn/blob/main/contrib/btrfs_tree.py)\nto get more details than btrfs_print_leaf() gives us:\n\n \u003e\u003e\u003e print_extent_buffer(prog.crashed_thread().stack_trace()[0][\"eb\"])\n leaf 33439744 level 0 items 72 generation 9 owner 18446744073709551610\n leaf 33439744 flags 0x100000000000000\n fs uuid e5bd3946-400c-4223-8923-190ef1f18677\n chunk uuid d58cb17e-6d02-494a-829a-18b7d8a399da\n item 0 key (450 INODE_ITEM 0) itemoff 16123 itemsize 160\n generation 7 transid 9 size 8192 nbytes 8473563889606862198\n block group 0 mode 100600 links 1 uid 0 gid 0 rdev 0\n sequence 204 flags 0x10(PREALLOC)\n atime 1716417703.220000000 (2024-05-22 15:41:43)\n ctime 1716417704.983333333 (2024-05-22 15:41:44)\n mtime 1716417704.983333333 (2024-05-22 15:41:44)\n otime 17592186044416.000000000 (559444-03-08 01:40:16)\n item 1 key (450 INODE_REF 256) itemoff 16110 itemsize 13\n index 195 namelen 3 name: 193\n item 2 key (450 XATTR_ITEM 1640047104) itemoff 16073 itemsize 37\n location key (0 UNKNOWN.0 0) type XATTR\n transid 7 data_len 1 name_len 6\n name: user.a\n data a\n item 3 key (450 EXTENT_DATA 0) itemoff 16020 itemsize 53\n generation 9 type 1 (regular)\n extent data disk byte 303144960 nr 12288\n extent data offset 0 nr 4096 ram 12288\n extent compression 0 (none)\n item 4 key (450 EXTENT_DATA 4096) itemoff 15967 itemsize 53\n generation 9 type 2 (prealloc)\n prealloc data disk byte 303144960 nr 12288\n prealloc data offset 4096 nr 8192\n item 5 key (450 EXTENT_DATA 8192) itemoff 15914 itemsize 53\n generation 9 type 2 (prealloc)\n prealloc data disk byte 303144960 nr 12288\n prealloc data offset 8192 nr 4096\n ...\n\nSo the real problem happened earlier: notice that items 4 (4k-12k) and 5\n(8k-12k) overlap. Both are prealloc extents. Item 4 straddles i_size and\nitem 5 starts at i_size.\n\nHere is the state of \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-37354",
"url": "https://www.suse.com/security/cve/CVE-2024-37354"
},
{
"category": "external",
"summary": "SUSE Bug 1227101 for CVE-2024-37354",
"url": "https://bugzilla.suse.com/1227101"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-37354"
},
{
"cve": "CVE-2024-38544",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38544"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rxe: Fix seg fault in rxe_comp_queue_pkt\n\nIn rxe_comp_queue_pkt() an incoming response packet skb is enqueued to the\nresp_pkts queue and then a decision is made whether to run the completer\ntask inline or schedule it. Finally the skb is dereferenced to bump a \u0027hw\u0027\nperformance counter. This is wrong because if the completer task is\nalready running in a separate thread it may have already processed the skb\nand freed it which can cause a seg fault. This has been observed\ninfrequently in testing at high scale.\n\nThis patch fixes this by changing the order of enqueuing the packet until\nafter the counter is accessed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38544",
"url": "https://www.suse.com/security/cve/CVE-2024-38544"
},
{
"category": "external",
"summary": "SUSE Bug 1226597 for CVE-2024-38544",
"url": "https://bugzilla.suse.com/1226597"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-38544"
},
{
"cve": "CVE-2024-38545",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38545"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/hns: Fix UAF for cq async event\n\nThe refcount of CQ is not protected by locks. When CQ asynchronous\nevents and CQ destruction are concurrent, CQ may have been released,\nwhich will cause UAF.\n\nUse the xa_lock() to protect the CQ refcount.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38545",
"url": "https://www.suse.com/security/cve/CVE-2024-38545"
},
{
"category": "external",
"summary": "SUSE Bug 1226595 for CVE-2024-38545",
"url": "https://bugzilla.suse.com/1226595"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-38545"
},
{
"cve": "CVE-2024-38546",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38546"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm: vc4: Fix possible null pointer dereference\n\nIn vc4_hdmi_audio_init() of_get_address() may return\nNULL which is later dereferenced. Fix this bug by adding NULL check.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38546",
"url": "https://www.suse.com/security/cve/CVE-2024-38546"
},
{
"category": "external",
"summary": "SUSE Bug 1226593 for CVE-2024-38546",
"url": "https://bugzilla.suse.com/1226593"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-38546"
},
{
"cve": "CVE-2024-38549",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38549"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/mediatek: Add 0 size check to mtk_drm_gem_obj\n\nAdd a check to mtk_drm_gem_init if we attempt to allocate a GEM object\nof 0 bytes. Currently, no such check exists and the kernel will panic if\na userspace application attempts to allocate a 0x0 GBM buffer.\n\nTested by attempting to allocate a 0x0 GBM buffer on an MT8188 and\nverifying that we now return EINVAL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38549",
"url": "https://www.suse.com/security/cve/CVE-2024-38549"
},
{
"category": "external",
"summary": "SUSE Bug 1226735 for CVE-2024-38549",
"url": "https://bugzilla.suse.com/1226735"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-38549"
},
{
"cve": "CVE-2024-38552",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38552"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix potential index out of bounds in color transformation function\n\nFixes index out of bounds issue in the color transformation function.\nThe issue could occur when the index \u0027i\u0027 exceeds the number of transfer\nfunction points (TRANSFER_FUNC_POINTS).\n\nThe fix adds a check to ensure \u0027i\u0027 is within bounds before accessing the\ntransfer function points. If \u0027i\u0027 is out of bounds, an error message is\nlogged and the function returns false to indicate an error.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn10/dcn10_cm_common.c:405 cm_helper_translate_curve_to_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.red\u0027 1025 \u003c= s32max\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn10/dcn10_cm_common.c:406 cm_helper_translate_curve_to_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.green\u0027 1025 \u003c= s32max\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn10/dcn10_cm_common.c:407 cm_helper_translate_curve_to_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.blue\u0027 1025 \u003c= s32max",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38552",
"url": "https://www.suse.com/security/cve/CVE-2024-38552"
},
{
"category": "external",
"summary": "SUSE Bug 1226767 for CVE-2024-38552",
"url": "https://bugzilla.suse.com/1226767"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-38552"
},
{
"cve": "CVE-2024-38553",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38553"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: fec: remove .ndo_poll_controller to avoid deadlocks\n\nThere is a deadlock issue found in sungem driver, please refer to the\ncommit ac0a230f719b (\"eth: sungem: remove .ndo_poll_controller to avoid\ndeadlocks\"). The root cause of the issue is that netpoll is in atomic\ncontext and disable_irq() is called by .ndo_poll_controller interface\nof sungem driver, however, disable_irq() might sleep. After analyzing\nthe implementation of fec_poll_controller(), the fec driver should have\nthe same issue. Due to the fec driver uses NAPI for TX completions, the\n.ndo_poll_controller is unnecessary to be implemented in the fec driver,\nso fec_poll_controller() can be safely removed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38553",
"url": "https://www.suse.com/security/cve/CVE-2024-38553"
},
{
"category": "external",
"summary": "SUSE Bug 1226744 for CVE-2024-38553",
"url": "https://bugzilla.suse.com/1226744"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-38553"
},
{
"cve": "CVE-2024-38565",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38565"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ar5523: enable proper endpoint verification\n\nSyzkaller reports [1] hitting a warning about an endpoint in use\nnot having an expected type to it.\n\nFix the issue by checking for the existence of all proper\nendpoints with their according types intact.\n\nSadly, this patch has not been tested on real hardware.\n\n[1] Syzkaller report:\n------------[ cut here ]------------\nusb 1-1: BOGUS urb xfer, pipe 3 != type 1\nWARNING: CPU: 0 PID: 3643 at drivers/usb/core/urb.c:504 usb_submit_urb+0xed6/0x1880 drivers/usb/core/urb.c:504\n...\nCall Trace:\n \u003cTASK\u003e\n ar5523_cmd+0x41b/0x780 drivers/net/wireless/ath/ar5523/ar5523.c:275\n ar5523_cmd_read drivers/net/wireless/ath/ar5523/ar5523.c:302 [inline]\n ar5523_host_available drivers/net/wireless/ath/ar5523/ar5523.c:1376 [inline]\n ar5523_probe+0x14b0/0x1d10 drivers/net/wireless/ath/ar5523/ar5523.c:1655\n usb_probe_interface+0x30f/0x7f0 drivers/usb/core/driver.c:396\n call_driver_probe drivers/base/dd.c:560 [inline]\n really_probe+0x249/0xb90 drivers/base/dd.c:639\n __driver_probe_device+0x1df/0x4d0 drivers/base/dd.c:778\n driver_probe_device+0x4c/0x1a0 drivers/base/dd.c:808\n __device_attach_driver+0x1d4/0x2e0 drivers/base/dd.c:936\n bus_for_each_drv+0x163/0x1e0 drivers/base/bus.c:427\n __device_attach+0x1e4/0x530 drivers/base/dd.c:1008\n bus_probe_device+0x1e8/0x2a0 drivers/base/bus.c:487\n device_add+0xbd9/0x1e90 drivers/base/core.c:3517\n usb_set_configuration+0x101d/0x1900 drivers/usb/core/message.c:2170\n usb_generic_driver_probe+0xbe/0x100 drivers/usb/core/generic.c:238\n usb_probe_device+0xd8/0x2c0 drivers/usb/core/driver.c:293\n call_driver_probe drivers/base/dd.c:560 [inline]\n really_probe+0x249/0xb90 drivers/base/dd.c:639\n __driver_probe_device+0x1df/0x4d0 drivers/base/dd.c:778\n driver_probe_device+0x4c/0x1a0 drivers/base/dd.c:808\n __device_attach_driver+0x1d4/0x2e0 drivers/base/dd.c:936\n bus_for_each_drv+0x163/0x1e0 drivers/base/bus.c:427\n __device_attach+0x1e4/0x530 drivers/base/dd.c:1008\n bus_probe_device+0x1e8/0x2a0 drivers/base/bus.c:487\n device_add+0xbd9/0x1e90 drivers/base/core.c:3517\n usb_new_device.cold+0x685/0x10ad drivers/usb/core/hub.c:2573\n hub_port_connect drivers/usb/core/hub.c:5353 [inline]\n hub_port_connect_change drivers/usb/core/hub.c:5497 [inline]\n port_event drivers/usb/core/hub.c:5653 [inline]\n hub_event+0x26cb/0x45d0 drivers/usb/core/hub.c:5735\n process_one_work+0x9bf/0x1710 kernel/workqueue.c:2289\n worker_thread+0x669/0x1090 kernel/workqueue.c:2436\n kthread+0x2e8/0x3a0 kernel/kthread.c:376\n ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:306\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38565",
"url": "https://www.suse.com/security/cve/CVE-2024-38565"
},
{
"category": "external",
"summary": "SUSE Bug 1226747 for CVE-2024-38565",
"url": "https://bugzilla.suse.com/1226747"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-38565"
},
{
"cve": "CVE-2024-38567",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38567"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: carl9170: add a proper sanity check for endpoints\n\nSyzkaller reports [1] hitting a warning which is caused by presence\nof a wrong endpoint type at the URB sumbitting stage. While there\nwas a check for a specific 4th endpoint, since it can switch types\nbetween bulk and interrupt, other endpoints are trusted implicitly.\nSimilar warning is triggered in a couple of other syzbot issues [2].\n\nFix the issue by doing a comprehensive check of all endpoints\ntaking into account difference between high- and full-speed\nconfiguration.\n\n[1] Syzkaller report:\n...\nWARNING: CPU: 0 PID: 4721 at drivers/usb/core/urb.c:504 usb_submit_urb+0xed6/0x1880 drivers/usb/core/urb.c:504\n...\nCall Trace:\n \u003cTASK\u003e\n carl9170_usb_send_rx_irq_urb+0x273/0x340 drivers/net/wireless/ath/carl9170/usb.c:504\n carl9170_usb_init_device drivers/net/wireless/ath/carl9170/usb.c:939 [inline]\n carl9170_usb_firmware_finish drivers/net/wireless/ath/carl9170/usb.c:999 [inline]\n carl9170_usb_firmware_step2+0x175/0x240 drivers/net/wireless/ath/carl9170/usb.c:1028\n request_firmware_work_func+0x130/0x240 drivers/base/firmware_loader/main.c:1107\n process_one_work+0x9bf/0x1710 kernel/workqueue.c:2289\n worker_thread+0x669/0x1090 kernel/workqueue.c:2436\n kthread+0x2e8/0x3a0 kernel/kthread.c:376\n ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:308\n \u003c/TASK\u003e\n\n[2] Related syzkaller crashes:",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38567",
"url": "https://www.suse.com/security/cve/CVE-2024-38567"
},
{
"category": "external",
"summary": "SUSE Bug 1226769 for CVE-2024-38567",
"url": "https://bugzilla.suse.com/1226769"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-38567"
},
{
"cve": "CVE-2024-38578",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38578"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\necryptfs: Fix buffer size for tag 66 packet\n\nThe \u0027TAG 66 Packet Format\u0027 description is missing the cipher code and\nchecksum fields that are packed into the message packet. As a result,\nthe buffer allocated for the packet is 3 bytes too small and\nwrite_tag_66_packet() will write up to 3 bytes past the end of the\nbuffer.\n\nFix this by increasing the size of the allocation so the whole packet\nwill always fit in the buffer.\n\nThis fixes the below kasan slab-out-of-bounds bug:\n\n BUG: KASAN: slab-out-of-bounds in ecryptfs_generate_key_packet_set+0x7d6/0xde0\n Write of size 1 at addr ffff88800afbb2a5 by task touch/181\n\n CPU: 0 PID: 181 Comm: touch Not tainted 6.6.13-gnu #1 4c9534092be820851bb687b82d1f92a426598dc6\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.2/GNU Guix 04/01/2014\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x4c/0x70\n print_report+0xc5/0x610\n ? ecryptfs_generate_key_packet_set+0x7d6/0xde0\n ? kasan_complete_mode_report_info+0x44/0x210\n ? ecryptfs_generate_key_packet_set+0x7d6/0xde0\n kasan_report+0xc2/0x110\n ? ecryptfs_generate_key_packet_set+0x7d6/0xde0\n __asan_store1+0x62/0x80\n ecryptfs_generate_key_packet_set+0x7d6/0xde0\n ? __pfx_ecryptfs_generate_key_packet_set+0x10/0x10\n ? __alloc_pages+0x2e2/0x540\n ? __pfx_ovl_open+0x10/0x10 [overlay 30837f11141636a8e1793533a02e6e2e885dad1d]\n ? dentry_open+0x8f/0xd0\n ecryptfs_write_metadata+0x30a/0x550\n ? __pfx_ecryptfs_write_metadata+0x10/0x10\n ? ecryptfs_get_lower_file+0x6b/0x190\n ecryptfs_initialize_file+0x77/0x150\n ecryptfs_create+0x1c2/0x2f0\n path_openat+0x17cf/0x1ba0\n ? __pfx_path_openat+0x10/0x10\n do_filp_open+0x15e/0x290\n ? __pfx_do_filp_open+0x10/0x10\n ? __kasan_check_write+0x18/0x30\n ? _raw_spin_lock+0x86/0xf0\n ? __pfx__raw_spin_lock+0x10/0x10\n ? __kasan_check_write+0x18/0x30\n ? alloc_fd+0xf4/0x330\n do_sys_openat2+0x122/0x160\n ? __pfx_do_sys_openat2+0x10/0x10\n __x64_sys_openat+0xef/0x170\n ? __pfx___x64_sys_openat+0x10/0x10\n do_syscall_64+0x60/0xd0\n entry_SYSCALL_64_after_hwframe+0x6e/0xd8\n RIP: 0033:0x7f00a703fd67\n Code: 25 00 00 41 00 3d 00 00 41 00 74 37 64 8b 04 25 18 00 00 00 85 c0 75 5b 44 89 e2 48 89 ee bf 9c ff ff ff b8 01 01 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 0f 87 85 00 00 00 48 83 c4 68 5d 41 5c c3 0f 1f\n RSP: 002b:00007ffc088e30b0 EFLAGS: 00000246 ORIG_RAX: 0000000000000101\n RAX: ffffffffffffffda RBX: 00007ffc088e3368 RCX: 00007f00a703fd67\n RDX: 0000000000000941 RSI: 00007ffc088e48d7 RDI: 00000000ffffff9c\n RBP: 00007ffc088e48d7 R08: 0000000000000001 R09: 0000000000000000\n R10: 00000000000001b6 R11: 0000000000000246 R12: 0000000000000941\n R13: 0000000000000000 R14: 00007ffc088e48d7 R15: 00007f00a7180040\n \u003c/TASK\u003e\n\n Allocated by task 181:\n kasan_save_stack+0x2f/0x60\n kasan_set_track+0x29/0x40\n kasan_save_alloc_info+0x25/0x40\n __kasan_kmalloc+0xc5/0xd0\n __kmalloc+0x66/0x160\n ecryptfs_generate_key_packet_set+0x6d2/0xde0\n ecryptfs_write_metadata+0x30a/0x550\n ecryptfs_initialize_file+0x77/0x150\n ecryptfs_create+0x1c2/0x2f0\n path_openat+0x17cf/0x1ba0\n do_filp_open+0x15e/0x290\n do_sys_openat2+0x122/0x160\n __x64_sys_openat+0xef/0x170\n do_syscall_64+0x60/0xd0\n entry_SYSCALL_64_after_hwframe+0x6e/0xd8",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38578",
"url": "https://www.suse.com/security/cve/CVE-2024-38578"
},
{
"category": "external",
"summary": "SUSE Bug 1226634 for CVE-2024-38578",
"url": "https://bugzilla.suse.com/1226634"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-38578"
},
{
"cve": "CVE-2024-38579",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38579"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: bcm - Fix pointer arithmetic\n\nIn spu2_dump_omd() value of ptr is increased by ciph_key_len\ninstead of hash_iv_len which could lead to going beyond the\nbuffer boundaries.\nFix this bug by changing ciph_key_len to hash_iv_len.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38579",
"url": "https://www.suse.com/security/cve/CVE-2024-38579"
},
{
"category": "external",
"summary": "SUSE Bug 1226637 for CVE-2024-38579",
"url": "https://bugzilla.suse.com/1226637"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-38579"
},
{
"cve": "CVE-2024-38580",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38580"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nepoll: be better about file lifetimes\n\nepoll can call out to vfs_poll() with a file pointer that may race with\nthe last \u0027fput()\u0027. That would make f_count go down to zero, and while\nthe ep-\u003emtx locking means that the resulting file pointer tear-down will\nbe blocked until the poll returns, it means that f_count is already\ndead, and any use of it won\u0027t actually get a reference to the file any\nmore: it\u0027s dead regardless.\n\nMake sure we have a valid ref on the file pointer before we call down to\nvfs_poll() from the epoll routines.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38580",
"url": "https://www.suse.com/security/cve/CVE-2024-38580"
},
{
"category": "external",
"summary": "SUSE Bug 1226610 for CVE-2024-38580",
"url": "https://bugzilla.suse.com/1226610"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-38580"
},
{
"cve": "CVE-2024-38597",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38597"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\neth: sungem: remove .ndo_poll_controller to avoid deadlocks\n\nErhard reports netpoll warnings from sungem:\n\n netpoll_send_skb_on_dev(): eth0 enabled interrupts in poll (gem_start_xmit+0x0/0x398)\n WARNING: CPU: 1 PID: 1 at net/core/netpoll.c:370 netpoll_send_skb+0x1fc/0x20c\n\ngem_poll_controller() disables interrupts, which may sleep.\nWe can\u0027t sleep in netpoll, it has interrupts disabled completely.\nStrangely, gem_poll_controller() doesn\u0027t even poll the completions,\nand instead acts as if an interrupt has fired so it just schedules\nNAPI and exits. None of this has been necessary for years, since\nnetpoll invokes NAPI directly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38597",
"url": "https://www.suse.com/security/cve/CVE-2024-38597"
},
{
"category": "external",
"summary": "SUSE Bug 1226749 for CVE-2024-38597",
"url": "https://bugzilla.suse.com/1226749"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-38597"
},
{
"cve": "CVE-2024-38601",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38601"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nring-buffer: Fix a race between readers and resize checks\n\nThe reader code in rb_get_reader_page() swaps a new reader page into the\nring buffer by doing cmpxchg on old-\u003elist.prev-\u003enext to point it to the\nnew page. Following that, if the operation is successful,\nold-\u003elist.next-\u003eprev gets updated too. This means the underlying\ndoubly-linked list is temporarily inconsistent, page-\u003eprev-\u003enext or\npage-\u003enext-\u003eprev might not be equal back to page for some page in the\nring buffer.\n\nThe resize operation in ring_buffer_resize() can be invoked in parallel.\nIt calls rb_check_pages() which can detect the described inconsistency\nand stop further tracing:\n\n[ 190.271762] ------------[ cut here ]------------\n[ 190.271771] WARNING: CPU: 1 PID: 6186 at kernel/trace/ring_buffer.c:1467 rb_check_pages.isra.0+0x6a/0xa0\n[ 190.271789] Modules linked in: [...]\n[ 190.271991] Unloaded tainted modules: intel_uncore_frequency(E):1 skx_edac(E):1\n[ 190.272002] CPU: 1 PID: 6186 Comm: cmd.sh Kdump: loaded Tainted: G E 6.9.0-rc6-default #5 158d3e1e6d0b091c34c3b96bfd99a1c58306d79f\n[ 190.272011] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.0-0-gd239552c-rebuilt.opensuse.org 04/01/2014\n[ 190.272015] RIP: 0010:rb_check_pages.isra.0+0x6a/0xa0\n[ 190.272023] Code: [...]\n[ 190.272028] RSP: 0018:ffff9c37463abb70 EFLAGS: 00010206\n[ 190.272034] RAX: ffff8eba04b6cb80 RBX: 0000000000000007 RCX: ffff8eba01f13d80\n[ 190.272038] RDX: ffff8eba01f130c0 RSI: ffff8eba04b6cd00 RDI: ffff8eba0004c700\n[ 190.272042] RBP: ffff8eba0004c700 R08: 0000000000010002 R09: 0000000000000000\n[ 190.272045] R10: 00000000ffff7f52 R11: ffff8eba7f600000 R12: ffff8eba0004c720\n[ 190.272049] R13: ffff8eba00223a00 R14: 0000000000000008 R15: ffff8eba067a8000\n[ 190.272053] FS: 00007f1bd64752c0(0000) GS:ffff8eba7f680000(0000) knlGS:0000000000000000\n[ 190.272057] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 190.272061] CR2: 00007f1bd6662590 CR3: 000000010291e001 CR4: 0000000000370ef0\n[ 190.272070] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 190.272073] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 190.272077] Call Trace:\n[ 190.272098] \u003cTASK\u003e\n[ 190.272189] ring_buffer_resize+0x2ab/0x460\n[ 190.272199] __tracing_resize_ring_buffer.part.0+0x23/0xa0\n[ 190.272206] tracing_resize_ring_buffer+0x65/0x90\n[ 190.272216] tracing_entries_write+0x74/0xc0\n[ 190.272225] vfs_write+0xf5/0x420\n[ 190.272248] ksys_write+0x67/0xe0\n[ 190.272256] do_syscall_64+0x82/0x170\n[ 190.272363] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[ 190.272373] RIP: 0033:0x7f1bd657d263\n[ 190.272381] Code: [...]\n[ 190.272385] RSP: 002b:00007ffe72b643f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001\n[ 190.272391] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f1bd657d263\n[ 190.272395] RDX: 0000000000000002 RSI: 0000555a6eb538e0 RDI: 0000000000000001\n[ 190.272398] RBP: 0000555a6eb538e0 R08: 000000000000000a R09: 0000000000000000\n[ 190.272401] R10: 0000555a6eb55190 R11: 0000000000000246 R12: 00007f1bd6662500\n[ 190.272404] R13: 0000000000000002 R14: 00007f1bd6667c00 R15: 0000000000000002\n[ 190.272412] \u003c/TASK\u003e\n[ 190.272414] ---[ end trace 0000000000000000 ]---\n\nNote that ring_buffer_resize() calls rb_check_pages() only if the parent\ntrace_buffer has recording disabled. Recent commit d78ab792705c\n(\"tracing: Stop current tracer when resizing buffer\") causes that it is\nnow always the case which makes it more likely to experience this issue.\n\nThe window to hit this race is nonetheless very small. To help\nreproducing it, one can add a delay loop in rb_get_reader_page():\n\n ret = rb_head_page_replace(reader, cpu_buffer-\u003ereader_page);\n if (!ret)\n \tgoto spin;\n for (unsigned i = 0; i \u003c 1U \u003c\u003c 26; i++) /* inserted delay loop */\n \t__asm__ __volatile__ (\"\" : : : \"memory\");\n rb_list_head(reader-\u003elist.next)-\u003eprev = \u0026cpu_buffer-\u003ereader_page-\u003elist;\n\n.. \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38601",
"url": "https://www.suse.com/security/cve/CVE-2024-38601"
},
{
"category": "external",
"summary": "SUSE Bug 1226876 for CVE-2024-38601",
"url": "https://bugzilla.suse.com/1226876"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-38601"
},
{
"cve": "CVE-2024-38608",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38608"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Fix netif state handling\n\nmlx5e_suspend cleans resources only if netif_device_present() returns\ntrue. However, mlx5e_resume changes the state of netif, via\nmlx5e_nic_enable, only if reg_state == NETREG_REGISTERED.\nIn the below case, the above leads to NULL-ptr Oops[1] and memory\nleaks:\n\nmlx5e_probe\n _mlx5e_resume\n mlx5e_attach_netdev\n mlx5e_nic_enable \u003c-- netdev not reg, not calling netif_device_attach()\n register_netdev \u003c-- failed for some reason.\nERROR_FLOW:\n _mlx5e_suspend \u003c-- netif_device_present return false, resources aren\u0027t freed :(\n\nHence, clean resources in this case as well.\n\n[1]\nBUG: kernel NULL pointer dereference, address: 0000000000000000\nPGD 0 P4D 0\nOops: 0010 [#1] SMP\nCPU: 2 PID: 9345 Comm: test-ovs-ct-gen Not tainted 6.5.0_for_upstream_min_debug_2023_09_05_16_01 #1\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\nRIP: 0010:0x0\nCode: Unable to access opcode bytes at0xffffffffffffffd6.\nRSP: 0018:ffff888178aaf758 EFLAGS: 00010246\nCall Trace:\n \u003cTASK\u003e\n ? __die+0x20/0x60\n ? page_fault_oops+0x14c/0x3c0\n ? exc_page_fault+0x75/0x140\n ? asm_exc_page_fault+0x22/0x30\n notifier_call_chain+0x35/0xb0\n blocking_notifier_call_chain+0x3d/0x60\n mlx5_blocking_notifier_call_chain+0x22/0x30 [mlx5_core]\n mlx5_core_uplink_netdev_event_replay+0x3e/0x60 [mlx5_core]\n mlx5_mdev_netdev_track+0x53/0x60 [mlx5_ib]\n mlx5_ib_roce_init+0xc3/0x340 [mlx5_ib]\n __mlx5_ib_add+0x34/0xd0 [mlx5_ib]\n mlx5r_probe+0xe1/0x210 [mlx5_ib]\n ? auxiliary_match_id+0x6a/0x90\n auxiliary_bus_probe+0x38/0x80\n ? driver_sysfs_add+0x51/0x80\n really_probe+0xc9/0x3e0\n ? driver_probe_device+0x90/0x90\n __driver_probe_device+0x80/0x160\n driver_probe_device+0x1e/0x90\n __device_attach_driver+0x7d/0x100\n bus_for_each_drv+0x80/0xd0\n __device_attach+0xbc/0x1f0\n bus_probe_device+0x86/0xa0\n device_add+0x637/0x840\n __auxiliary_device_add+0x3b/0xa0\n add_adev+0xc9/0x140 [mlx5_core]\n mlx5_rescan_drivers_locked+0x22a/0x310 [mlx5_core]\n mlx5_register_device+0x53/0xa0 [mlx5_core]\n mlx5_init_one_devl_locked+0x5c4/0x9c0 [mlx5_core]\n mlx5_init_one+0x3b/0x60 [mlx5_core]\n probe_one+0x44c/0x730 [mlx5_core]\n local_pci_probe+0x3e/0x90\n pci_device_probe+0xbf/0x210\n ? kernfs_create_link+0x5d/0xa0\n ? sysfs_do_create_link_sd+0x60/0xc0\n really_probe+0xc9/0x3e0\n ? driver_probe_device+0x90/0x90\n __driver_probe_device+0x80/0x160\n driver_probe_device+0x1e/0x90\n __device_attach_driver+0x7d/0x100\n bus_for_each_drv+0x80/0xd0\n __device_attach+0xbc/0x1f0\n pci_bus_add_device+0x54/0x80\n pci_iov_add_virtfn+0x2e6/0x320\n sriov_enable+0x208/0x420\n mlx5_core_sriov_configure+0x9e/0x200 [mlx5_core]\n sriov_numvfs_store+0xae/0x1a0\n kernfs_fop_write_iter+0x10c/0x1a0\n vfs_write+0x291/0x3c0\n ksys_write+0x5f/0xe0\n do_syscall_64+0x3d/0x90\n entry_SYSCALL_64_after_hwframe+0x46/0xb0\n CR2: 0000000000000000\n ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38608",
"url": "https://www.suse.com/security/cve/CVE-2024-38608"
},
{
"category": "external",
"summary": "SUSE Bug 1226746 for CVE-2024-38608",
"url": "https://bugzilla.suse.com/1226746"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-38608"
},
{
"cve": "CVE-2024-38618",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38618"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: timer: Set lower bound of start tick time\n\nCurrently ALSA timer doesn\u0027t have the lower limit of the start tick\ntime, and it allows a very small size, e.g. 1 tick with 1ns resolution\nfor hrtimer. Such a situation may lead to an unexpected RCU stall,\nwhere the callback repeatedly queuing the expire update, as reported\nby fuzzer.\n\nThis patch introduces a sanity check of the timer start tick time, so\nthat the system returns an error when a too small start size is set.\nAs of this patch, the lower limit is hard-coded to 100us, which is\nsmall enough but can still work somehow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38618",
"url": "https://www.suse.com/security/cve/CVE-2024-38618"
},
{
"category": "external",
"summary": "SUSE Bug 1226754 for CVE-2024-38618",
"url": "https://bugzilla.suse.com/1226754"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-38618"
},
{
"cve": "CVE-2024-38621",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38621"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: stk1160: fix bounds checking in stk1160_copy_video()\n\nThe subtract in this condition is reversed. The -\u003elength is the length\nof the buffer. The -\u003ebytesused is how many bytes we have copied thus\nfar. When the condition is reversed that means the result of the\nsubtraction is always negative but since it\u0027s unsigned then the result\nis a very high positive value. That means the overflow check is never\ntrue.\n\nAdditionally, the -\u003ebytesused doesn\u0027t actually work for this purpose\nbecause we\u0027re not writing to \"buf-\u003emem + buf-\u003ebytesused\". Instead, the\nmath to calculate the destination where we are writing is a bit\ninvolved. You calculate the number of full lines already written,\nmultiply by two, skip a line if necessary so that we start on an odd\nnumbered line, and add the offset into the line.\n\nTo fix this buffer overflow, just take the actual destination where we\nare writing, if the offset is already out of bounds print an error and\nreturn. Otherwise, write up to buf-\u003elength bytes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38621",
"url": "https://www.suse.com/security/cve/CVE-2024-38621"
},
{
"category": "external",
"summary": "SUSE Bug 1226895 for CVE-2024-38621",
"url": "https://bugzilla.suse.com/1226895"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-38621"
},
{
"cve": "CVE-2024-38627",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38627"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstm class: Fix a double free in stm_register_device()\n\nThe put_device(\u0026stm-\u003edev) call will trigger stm_device_release() which\nfrees \"stm\" so the vfree(stm) on the next line is a double free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38627",
"url": "https://www.suse.com/security/cve/CVE-2024-38627"
},
{
"category": "external",
"summary": "SUSE Bug 1226857 for CVE-2024-38627",
"url": "https://bugzilla.suse.com/1226857"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-38627"
},
{
"cve": "CVE-2024-38659",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38659"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nenic: Validate length of nl attributes in enic_set_vf_port\n\nenic_set_vf_port assumes that the nl attribute IFLA_PORT_PROFILE\nis of length PORT_PROFILE_MAX and that the nl attributes\nIFLA_PORT_INSTANCE_UUID, IFLA_PORT_HOST_UUID are of length PORT_UUID_MAX.\nThese attributes are validated (in the function do_setlink in rtnetlink.c)\nusing the nla_policy ifla_port_policy. The policy defines IFLA_PORT_PROFILE\nas NLA_STRING, IFLA_PORT_INSTANCE_UUID as NLA_BINARY and\nIFLA_PORT_HOST_UUID as NLA_STRING. That means that the length validation\nusing the policy is for the max size of the attributes and not on exact\nsize so the length of these attributes might be less than the sizes that\nenic_set_vf_port expects. This might cause an out of bands\nread access in the memcpys of the data of these\nattributes in enic_set_vf_port.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38659",
"url": "https://www.suse.com/security/cve/CVE-2024-38659"
},
{
"category": "external",
"summary": "SUSE Bug 1226883 for CVE-2024-38659",
"url": "https://bugzilla.suse.com/1226883"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-38659"
},
{
"cve": "CVE-2024-38661",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38661"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/ap: Fix crash in AP internal function modify_bitmap()\n\nA system crash like this\n\n Failing address: 200000cb7df6f000 TEID: 200000cb7df6f403\n Fault in home space mode while using kernel ASCE.\n AS:00000002d71bc007 R3:00000003fe5b8007 S:000000011a446000 P:000000015660c13d\n Oops: 0038 ilc:3 [#1] PREEMPT SMP\n Modules linked in: mlx5_ib ...\n CPU: 8 PID: 7556 Comm: bash Not tainted 6.9.0-rc7 #8\n Hardware name: IBM 3931 A01 704 (LPAR)\n Krnl PSW : 0704e00180000000 0000014b75e7b606 (ap_parse_bitmap_str+0x10e/0x1f8)\n R:0 T:1 IO:1 EX:1 Key:0 M:1 W:0 P:0 AS:3 CC:2 PM:0 RI:0 EA:3\n Krnl GPRS: 0000000000000001 ffffffffffffffc0 0000000000000001 00000048f96b75d3\n 000000cb00000100 ffffffffffffffff ffffffffffffffff 000000cb7df6fce0\n 000000cb7df6fce0 00000000ffffffff 000000000000002b 00000048ffffffff\n 000003ff9b2dbc80 200000cb7df6fcd8 0000014bffffffc0 000000cb7df6fbc8\n Krnl Code: 0000014b75e7b5fc: a7840047 brc 8,0000014b75e7b68a\n 0000014b75e7b600: 18b2 lr %r11,%r2\n #0000014b75e7b602: a7f4000a brc 15,0000014b75e7b616\n \u003e0000014b75e7b606: eb22d00000e6 laog %r2,%r2,0(%r13)\n 0000014b75e7b60c: a7680001 lhi %r6,1\n 0000014b75e7b610: 187b lr %r7,%r11\n 0000014b75e7b612: 84960021 brxh %r9,%r6,0000014b75e7b654\n 0000014b75e7b616: 18e9 lr %r14,%r9\n Call Trace:\n [\u003c0000014b75e7b606\u003e] ap_parse_bitmap_str+0x10e/0x1f8\n ([\u003c0000014b75e7b5dc\u003e] ap_parse_bitmap_str+0xe4/0x1f8)\n [\u003c0000014b75e7b758\u003e] apmask_store+0x68/0x140\n [\u003c0000014b75679196\u003e] kernfs_fop_write_iter+0x14e/0x1e8\n [\u003c0000014b75598524\u003e] vfs_write+0x1b4/0x448\n [\u003c0000014b7559894c\u003e] ksys_write+0x74/0x100\n [\u003c0000014b7618a440\u003e] __do_syscall+0x268/0x328\n [\u003c0000014b761a3558\u003e] system_call+0x70/0x98\n INFO: lockdep is turned off.\n Last Breaking-Event-Address:\n [\u003c0000014b75e7b636\u003e] ap_parse_bitmap_str+0x13e/0x1f8\n Kernel panic - not syncing: Fatal exception: panic_on_oops\n\noccured when /sys/bus/ap/a[pq]mask was updated with a relative mask value\n(like +0x10-0x12,+60,-90) with one of the numeric values exceeding INT_MAX.\n\nThe fix is simple: use unsigned long values for the internal variables. The\ncorrect checks are already in place in the function but a simple int for\nthe internal variables was used with the possibility to overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38661",
"url": "https://www.suse.com/security/cve/CVE-2024-38661"
},
{
"category": "external",
"summary": "SUSE Bug 1226996 for CVE-2024-38661",
"url": "https://bugzilla.suse.com/1226996"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-38661"
},
{
"cve": "CVE-2024-38780",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38780"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndma-buf/sw-sync: don\u0027t enable IRQ from sync_print_obj()\n\nSince commit a6aa8fca4d79 (\"dma-buf/sw-sync: Reduce irqsave/irqrestore from\nknown context\") by error replaced spin_unlock_irqrestore() with\nspin_unlock_irq() for both sync_debugfs_show() and sync_print_obj() despite\nsync_print_obj() is called from sync_debugfs_show(), lockdep complains\ninconsistent lock state warning.\n\nUse plain spin_{lock,unlock}() for sync_print_obj(), for\nsync_debugfs_show() is already using spin_{lock,unlock}_irq().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38780",
"url": "https://www.suse.com/security/cve/CVE-2024-38780"
},
{
"category": "external",
"summary": "SUSE Bug 1226886 for CVE-2024-38780",
"url": "https://bugzilla.suse.com/1226886"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.191.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.191.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.191.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-09T14:01:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-38780"
}
]
}
suse-su-2024:2896-1
Vulnerability from csaf_suse
Published
2024-08-13 14:09
Modified
2024-08-13 14:09
Summary
Security update for the Linux Kernel
Notes
Title of the patch
Security update for the Linux Kernel
Description of the patch
The SUSE Linux Enterprise 15 SP6 Azure kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2024-41014: xfs: add bounds checking to xlog_recover_process_data (bsc#1228408).
- CVE-2024-41013: xfs: do not walk off the end of a directory data block (bsc#1228405).
- CVE-2024-41017: jfs: do not walk off the end of ealist (bsc#1228403).
- CVE-2024-40972: ext4: fold quota accounting into ext4_xattr_inode_lookup_create() (bsc#1227910).
- CVE-2024-39276: ext4: fix mb_cache_entry's e_refcnt leak in ext4_xattr_block_cache_find() (bsc#1226993).
- CVE-2024-40925: block: fix request.queuelist usage in flush (bsc#1227789).
- CVE-2024-40998: ext4: fix uninitialized ratelimit_state->lock access in __ext4_fill_super() (bsc#1227866).
- CVE-2024-39494: ima: Fix use-after-free on a dentry's dname.name (bsc#1227716).
- CVE-2024-39496: btrfs: zoned: fix use-after-free due to race with dev replace (bsc#1227719).
- CVE-2024-41091: tun: add missing verification for short frame (bsc#1228327).
- CVE-2024-41090: tap: add missing verification for short frame (bsc#1228328).
- CVE-2024-40999: net: ena: Add validation for completion descriptors consistency (bsc#1227913).
- CVE-2024-40966: kABI: tty: add the option to have a tty reject a new ldisc (bsc#1227886).
- CVE-2024-40975: platform/x86: x86-android-tablets: Unregister devices in reverse order (bsc#1227926).
- CVE-2024-40970: Avoid hw_desc array overrun in dw-axi-dmac (bsc#1227899).
- CVE-2024-40947: ima: Avoid blocking in RCU read-side critical section (bsc#1227803).
- CVE-2024-40908: bpf: Set run context for rawtp test_run callback (bsc#1227783).
- CVE-2024-40960: ipv6: prevent possible NULL dereference in rt6_probe() (bsc#1227813).
- CVE-2024-40935: cachefiles: flush all requests after setting CACHEFILES_DEAD (bsc#1227797).
- CVE-2024-40961: ipv6: prevent possible NULL deref in fib6_nh_init() (bsc#1227814).
- CVE-2024-39504: netfilter: nft_inner: validate mandatory meta and payload (bsc#1227757).
- CVE-2024-41006: netrom: Fix a memory leak in nr_heartbeat_expiry() (bsc#1227862).
- CVE-2024-40937: gve: Clear napi->skb before dev_kfree_skb_any() (bsc#1227836).
- CVE-2024-39507: net: hns3: fix kernel crash problem in concurrent scenario (bsc#1227730).
- CVE-2024-40940: net/mlx5: Fix tainted pointer delete is case of flow rules creation fail (bsc#1227800).
- CVE-2024-40928: net: ethtool: fix the error condition in ethtool_get_phy_stats_ethtool() (bsc#1227788).
- CVE-2024-26944: btrfs: zoned: fix lock ordering in btrfs_zone_activate() (bsc#1223731).
- CVE-2024-40923: vmxnet3: disable rx data ring on dma allocation failure (bsc#1227786).
- CVE-2024-40931: mptcp: ensure snd_una is properly initialized on connect (bsc#1227780).
- CVE-2024-40919: bnxt_en: Adjust logging of firmware messages in case of released token in __hwrm_send() (bsc#1227779).
- CVE-2024-39487: bonding: Fix out-of-bounds read in bond_option_arp_ip_targets_set() (bsc#1227573)
- CVE-2024-35908: tls: get psock ref after taking rxlock to avoid leak (bsc#1224490)
- CVE-2024-35899: netfilter: nf_tables: flush pending destroy work before exit_net release (bsc#1224499)
- CVE-2024-35934: net/smc: reduce rtnl pressure in smc_pnet_create_pnetids_list() (bsc#1224641)
- CVE-2024-35893: net/sched: act_skbmod: prevent kernel-infoleak (bsc#1224512)
- CVE-2024-40901: scsi: mpt3sas: Avoid test/set_bit() operating in non-allocated memory (bsc#1227762).
- CVE-2024-39472: xfs: fix log recovery buffer allocation for the legacy h_size fixup (bsc#1227432).
- CVE-2024-40953: KVM: Fix a data race on last_boosted_vcpu in kvm_vcpu_on_spin() (bsc#1227806).
- CVE-2024-27404: mptcp: fix data races on remote_id (bsc#1224422)
- CVE-2024-27020: netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get() (bsc#1223815)
- CVE-2024-27019: netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get() (bsc#1223813)
- CVE-2024-40948: mm/page_table_check: fix crash on ZONE_DEVICE (bsc#1227801).
- CVE-2024-35890: gro: fix ownership transfer (bsc#1224516).
- CVE-2024-36902: ipv6: fib6_rules: avoid possible NULL dereference in fib6_rule_action() (bsc#1225719).
- CVE-2024-36946: phonet: fix rtm_phonet_notify() skb allocation (bsc#1225851).
- CVE-2024-38586: r8169: Fix possible ring buffer corruption on fragmented Tx packets (bsc#1226750).
- CVE-2024-39468: smb: client: fix deadlock in smb2_find_smb_tcon() (bsc#1227103.
- CVE-2024-40906: net/mlx5: Always stop health timer during driver removal (bsc#1227763).
- CVE-2024-27012: netfilter: nf_tables: restore set elements when delete set fails (bsc#1223804).
- CVE-2024-39498: drm/mst: Fix NULL pointer dereference at drm_dp_add_payload_part2 (bsc#1227723)
- CVE-2024-39502: ionic: fix use after netif_napi_del() (bsc#1227755).
- CVE-2024-27016: netfilter: flowtable: validate pppoe header (bsc#1223807).
- CVE-2024-36901: ipv6: prevent NULL dereference in ip6_output() (bsc#1225711)
- CVE-2024-36004: i40e: Do not use WQ_MEM_RECLAIM flag for workqueue (bsc#1224545)
- CVE-2024-27025: nbd: null check for nla_nest_start (bsc#1223778)
- CVE-2024-35853: mlxsw: spectrum_acl_tcam: Fix memory leak during rehash (bsc#1224604).
- CVE-2024-35854: Fixed possible use-after-free during rehash (bsc#1224636).
- CVE-2024-27402: phonet/pep: fix racy skb_queue_empty() use (bsc#1224414).
- CVE-2023-52435: net: prevent mss overflow in skb_segment() (bsc#1220138).
- CVE-2024-27065: netfilter: nf_tables: do not compare internal table flags on updates (bsc#1223836).
- CVE-2024-27015: netfilter: flowtable: incorrect pppoe tuple (bsc#1223806).
- CVE-2024-27064: netfilter: nf_tables: Fix a memory leak in nf_tables_updchain (bsc#1223740).
- CVE-2024-26663: tipc: Check the bearer type before calling tipc_udp_nl_bearer_add() (bsc#1222326).
- CVE-2023-47210: wifi: iwlwifi: bump FW API to 90 for BZ/SC devices (bsc#1225601, bsc#1225600).
- CVE-2023-52775: net/smc: avoid data corruption caused by decline (bsc#1225088).
- CVE-2024-38558: net: openvswitch: fix overwriting ct original tuple for ICMPv6 (bsc#1226783).
- CVE-2024-39490: ipv6: sr: fix missing sk_buff release in seg6_input_core (bsc#1227626).
- CVE-2024-26826: mptcp: fix data re-injection from stale subflow (bsc#1223010).
- CVE-2024-26615: net/smc: fix illegal rmb_desc access in SMC-D connection dump (bsc#1220942).
- CVE-2024-35942: pmdomain: imx8mp-blk-ctrl: imx8mp_blk: Add fdcc clock to hdmimix domain (bsc#1224589).
- CVE-2024-26691: KVM: arm64: Fix circular locking dependency (bsc#1222463).
- CVE-2024-36909: Drivers: hv: vmbus: Do not free ring buffers that couldn't be re-encrypted (bsc#1225744).
- CVE-2024-36910: uio_hv_generic: Do not free decrypted memory (bsc#1225717).
- CVE-2024-36911: hv_netvsc: Do not free decrypted memory (bsc#1225745).
- CVE-2024-36912: Drivers: hv: vmbus: Track decrypted status in vmbus_gpadl (bsc#1225752).
- CVE-2024-36913: Drivers: hv: vmbus: Leak pages if set_memory_encrypted() fails (bsc#1225753).
- CVE-2024-26665: tunnels: fix out of bounds access when building IPv6 PMTU error (bsc#1222328).
- CVE-2024-38659: enic: Validate length of nl attributes in enic_set_vf_port (bsc#1226883).
- CVE-2023-52751: smb: client: fix use-after-free in smb2_query_info_compound() (bsc#1225489).
- CVE-2024-39482: bcache: fix variable length array abuse in btree_iter (bsc#1227447).
- CVE-2024-39474: mm/vmalloc: fix vmalloc which may return null if called with __GFP_NOFAIL (bsc#1227434).
- CVE-2024-26636: llc: make llc_ui_sendmsg() more robust against bonding changes (bsc#1221659).
- CVE-2024-26635: llc: Drop support for ETH_P_TR_802_2 (bsc#1221656).
- CVE-2024-38598: md: fix resync softlockup when bitmap size is less than array size (bsc#1226757).
- CVE-2024-36003: ice: fix LAG and VF lock dependency in ice_reset_vf() (bsc#1224544).
- CVE-2024-38604: block: refine the EOF check in blkdev_iomap_begin (bsc#1226866).
- CVE-2024-26641: ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv() (bsc#1221654).
- CVE-2024-26863: hsr: Fix uninit-value access in hsr_get_node() (bsc#1223021).
- CVE-2024-26633: ip6_tunnel: fix NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tlv_enc_lim() (bsc#1221647).
- CVE-2024-26623: pds_core: Prevent race issues involving the adminq (bsc#1221057).
- CVE-2024-26785: iommufd: Fix protection fault in iommufd_test_syz_conv_iova (bsc#1222779).
- CVE-2024-26734: devlink: fix possible use-after-free and memory leaks in devlink_init() (bsc#1222438).
- CVE-2024-35805: dm snapshot: fix lockup in dm_exception_table_exit (bsc#1224743).
- CVE-2024-39371: io_uring: check for non-NULL file pointer in io_file_can_poll() (bsc#1226990).
- CVE-2023-52846: hsr: Prevent use after free in prp_create_tagged_frame() (bsc#1225098).
- CVE-2024-38610: drivers/virt/acrn: fix PFNMAP PTE checks in acrn_vm_ram_map() (bsc#1226758).
- CVE-2024-37354: btrfs: fix crash on racing fsync and size-extending write into prealloc (bsc#1227101).
- CVE-2024-36919: scsi: bnx2fc: Remove spin_lock_bh while releasing resources after upload (bsc#1225767).
- CVE-2024-38559: scsi: qedf: Ensure the copied buf is NUL terminated (bsc#1226785).
- CVE-2024-38570: gfs2: Fix potential glock use-after-free on unmount (bsc#1226775).
- CVE-2024-36904: tcp: Use refcount_inc_not_zero() in tcp_twsk_unique() (bsc#1225732).
- CVE-2023-52881: tcp: do not accept ACK of bytes we never sent (bsc#1225611).
- CVE-2024-37353: virtio: fixed a double free in vp_del_vqs() (bsc#1226875).
- CVE-2024-39301: net/9p: fix uninit-value in p9_client_rpc() (bsc#1226994).
- CVE-2024-35843: iommu/vt-d: Use device rbtree in iopf reporting path (bsc#1224751).
- CVE-2024-37078: nilfs2: fix potential kernel bug due to lack of writeback flag waiting (bsc#1227066).
- CVE-2024-35247: fpga: region: add owner module and take its refcount (bsc#1226948).
- CVE-2024-36479: fpga: bridge: add owner module and take its refcount (bsc#1226949).
- CVE-2024-37021: fpga: manager: add owner module and take its refcount (bsc#1226950).
- CVE-2024-36281: net/mlx5: Use mlx5_ipsec_rx_status_destroy to correctly delete status rules (bsc#1226799).
- CVE-2024-38580: epoll: be better about file lifetimes (bsc#1226610).
- CVE-2024-36478: null_blk: fix null-ptr-dereference while configuring 'power' and 'submit_queues' (bsc#1226841).
- CVE-2024-38636: f2fs: multidev: fix to recognize valid zero block address (bsc#1226879).
- CVE-2024-38661: s390/ap: Fix crash in AP internal function modify_bitmap() (bsc#1226996).
- CVE-2024-38564: bpf: Add BPF_PROG_TYPE_CGROUP_SKB attach type enforcement in BPF_LINK_CREATE (bsc#1226789).
- CVE-2024-38566: bpf: Fix verifier assumptions about socket->sk (bsc#1226790).
- CVE-2024-38560: scsi: bfa: Ensure the copied buf is NUL terminated (bsc#1226786).
- CVE-2024-36978: net: sched: sch_multiq: fix possible OOB write in multiq_tune() (bsc#1226514).
- CVE-2024-36917: block: fix overflow in blk_ioctl_discard() (bsc#1225770).
- CVE-2024-36974: net/sched: taprio: always validate TCA_TAPRIO_ATTR_PRIOMAP (bsc#1226519).
- CVE-2024-38627: stm class: Fix a double free in stm_register_device() (bsc#1226857).
- CVE-2024-38603: drivers/perf: hisi: hns3: Actually use devm_add_action_or_reset() (bsc#1226842).
- CVE-2024-38553: net: fec: remove .ndo_poll_controller to avoid deadlock (bsc#1226744).
- CVE-2024-38555: net/mlx5: Discard command completions in internal error (bsc#1226607).
- CVE-2024-38556: net/mlx5: Add a timeout to acquire the command queue semaphore (bsc#1226774).
- CVE-2024-38557: net/mlx5: Reload only IB representors upon lag disable/enable (bsc#1226781).
- CVE-2024-38608: net/mlx5e: Fix netif state handling (bsc#1226746).
- CVE-2024-38597: eth: sungem: remove .ndo_poll_controller to avoid deadlocks (bsc#1226749).
- CVE-2024-38594: net: stmmac: move the EST lock to struct stmmac_priv (bsc#1226734).
- CVE-2024-38569: drivers/perf: hisi_pcie: Fix out-of-bound access when valid event group (bsc#1226772).
- CVE-2024-38568: drivers/perf: hisi: hns3: Fix out-of-bound access when valid event group (bsc#1226771).
- CVE-2024-26814: vfio/fsl-mc: Block calling interrupt handler without trigger (bsc#1222810).
- CVE-2024-26813: vfio/platform: Create persistent IRQ handlers (bsc#1222809).
- CVE-2024-36945: net/smc: fix neighbour and rtable leak in smc_ib_find_route() (bsc#1225823).
- CVE-2024-36923: fs/9p: fix uninitialized values during inode evict (bsc#1225815).
- CVE-2024-36971: net: fix __dst_negative_advice() race (bsc#1226145).
- CVE-2024-27414: rtnetlink: fix error logic of IFLA_BRIDGE_FLAGS writing back (bsc#1224439).
- CVE-2024-35900: netfilter: nf_tables: reject new basechain after table flag update (bsc#1224497).
- CVE-2024-35886: ipv6: Fix infinite recursion in fib6_dump_done() (bsc#1224670).
- CVE-2024-36024: drm/amd/display: Disable idle reallow as part of command/gpint execution (bsc#1225702).
- CVE-2024-36903: ipv6: Fix potential uninit-value access in __ip6_make_skb() (bsc#1225741).
- CVE-2024-36914: drm/amd/display: Skip on writeback when it's not applicable (bsc#1225757).
- CVE-2024-36899: gpiolib: cdev: Fix use after free in lineinfo_changed_notify (bsc#1225737).
- CVE-2024-35979: raid1: fix use-after-free for original bio in raid1_write_request() (bsc#1224572).
- CVE-2024-35807: ext4: fix corruption during on-line resize (bsc#1224735).
- CVE-2023-52622: ext4: avoid online resizing failures due to oversized flex bg (bsc#1222080).
- CVE-2023-52843: llc: verify mac len before reading mac header (bsc#1224951).
- CVE-2024-35898: netfilter: nf_tables: Fix potential data-race in __nft_flowtable_type_get() (bsc#1224498).
- CVE-2024-36915: nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies (bsc#1225758).
- CVE-2024-36017: rtnetlink: Correct nested IFLA_VF_VLAN_LIST attribute validation (bsc#1225681).
- CVE-2024-36882: mm: use memalloc_nofs_save() in page_cache_ra_order() (bsc#1225723).
- CVE-2024-36916: blk-iocost: avoid out of bounds shift (bsc#1225759).
- CVE-2024-36900: net: hns3: fix kernel crash when devlink reload during initialization (bsc#1225726).
- CVE-2023-52787: blk-mq: make sure active queue usage is held for bio_integrity_prep() (bsc#1225105).
- CVE-2024-35925: block: prevent division by zero in blk_rq_stat_sum() (bsc#1224661).
- CVE-2023-52837: nbd: fix uaf in nbd_open (bsc#1224935).
- CVE-2023-52786: ext4: fix racy may inline data check in dio write (bsc#1224939).
- CVE-2024-36934: bna: ensure the copied buf is NUL terminated (bsc#1225760).
- CVE-2024-36935: ice: ensure the copied buf is NUL terminated (bsc#1225763).
- CVE-2024-36937: xdp: use flags field to disambiguate broadcast redirect (bsc#1225834).
- CVE-2023-52672: pipe: wakeup wr_wait after setting max_usage (bsc#1224614).
- CVE-2023-52845: tipc: Change nla_policy for bearer-related names to NLA_NUL_STRING (bsc#1225585).
- CVE-2024-36005: netfilter: nf_tables: honor table dormant flag from netdev release event path (bsc#1224539).
- CVE-2024-26845: scsi: target: core: Add TMF to tmr_list handling (bsc#1223018).
- CVE-2024-35892: net/sched: fix lockdep splat in qdisc_tree_reduce_backlog() (bsc#1224515).
- CVE-2024-35848: eeprom: at24: fix memory corruption race condition (bsc#1224612).
- CVE-2024-35884: udp: do not accept non-tunnel GSO skbs landing in a tunnel (bsc#1224520).
- CVE-2024-35857: icmp: prevent possible NULL dereferences from icmp_build_probe() (bsc#1224619).
- CVE-2023-52735: bpf, sockmap: Don't let sock_map_{close,destroy,unhash} call itself (bsc#1225475).
- CVE-2024-35926: crypto: iaa - Fix async_disable descriptor leak (bsc#1224655).
- CVE-2024-35976: Validate user input for XDP_{UMEM|COMPLETION}_FILL_RING (bsc#1224575).
- CVE-2024-36938: Fixed NULL pointer dereference in sk_psock_skb_ingress_enqueue (bsc#1225761).
- CVE-2024-36008: ipv4: check for NULL idev in ip_route_use_hint() (bsc#1224540).
- CVE-2024-35998: Fixed lock ordering potential deadlock in cifs_sync_mid_result (bsc#1224549).
- CVE-2023-52757: Fixed potential deadlock when releasing mids (bsc#1225548).
- CVE-2024-27419: Fixed data-races around sysctl_net_busy_read (bsc#1224759)
- CVE-2024-36957: octeontx2-af: avoid off-by-one read from userspace (bsc#1225762).
- CVE-2024-26625: Call sock_orphan() at release time (bsc#1221086)
- CVE-2024-35880: io_uring/kbuf: hold io_buffer_list reference over mmap (bsc#1224523).
- CVE-2024-35831: io_uring: Fix release of pinned pages when __io_uaddr_map fails (bsc#1224698).
- CVE-2024-35827: io_uring/net: fix overflow check in io_recvmsg_mshot_prep() (bsc#1224606).
- CVE-2023-52656: Dropped any code related to SCM_RIGHTS (bsc#1224187).
- CVE-2023-52699: sysv: don't call sb_bread() with pointers_lock held (bsc#1224659).
The following non-security bugs were fixed:
- ACPI: EC: Abort address space access upon error (stable-fixes).
- ACPI: EC: Avoid returning AE_OK on errors in address space handler (stable-fixes).
- ACPI: EC: Evaluate orphan _REG under EC device (git-fixes).
- ACPI: EC: Install address space handler at the namespace root (stable-fixes).
- ACPI: processor_idle: Fix invalid comparison with insertion sort for latency (git-fixes).
- ACPI: resource: Do IRQ override on TongFang GXxHRXx and GMxHGxx (stable-fixes).
- ACPI: x86: Add PNP_UART1_SKIP quirk for Lenovo Blade2 tablets (stable-fixes).
- ACPI: x86: Force StorageD3Enable on more products (stable-fixes).
- ACPICA: Revert 'ACPICA: avoid Info: mapping multiple BARs. Your kernel is fine.' (git-fixes).
- ALSA/hda: intel-dsp-config: Document AVS as dsp_driver option (git-fixes).
- ALSA: PCM: Allow resume only for suspended streams (stable-fixes).
- ALSA: dmaengine: Synchronize dma channel after drop() (stable-fixes).
- ALSA: dmaengine_pcm: terminate dmaengine before synchronize (stable-fixes).
- ALSA: emux: improve patch ioctl data validation (stable-fixes).
- ALSA: hda/conexant: Mute speakers at suspend / shutdown (bsc#1228269).
- ALSA: hda/generic: Add a helper to mute speakers at suspend/shutdown (bsc#1228269).
- ALSA: hda/realtek: Add more codec ID to no shutup pins list (stable-fixes).
- ALSA: hda/realtek: Add quirk for Lenovo Yoga Pro 7 14AHP9 (stable-fixes).
- ALSA: hda/realtek: Add quirk for Lenovo Yoga Pro 7 14ARP8 (stable-fixes).
- ALSA: hda/realtek: Enable Mute LED on HP 250 G7 (stable-fixes).
- ALSA: hda/realtek: Enable headset mic on IdeaPad 330-17IKB 81DM (git-fixes).
- ALSA: hda/realtek: Enable headset mic on Positivo SU C1400 (stable-fixes).
- ALSA: hda/realtek: Fix conflicting quirk for PCI SSID 17aa:3820 (git-fixes).
- ALSA: hda/realtek: Fix the speaker output on Samsung Galaxy Book Pro 360 (stable-fixes).
- ALSA: hda/realtek: Limit mic boost on N14AP7 (stable-fixes).
- ALSA: hda/realtek: Limit mic boost on VAIO PRO PX (stable-fixes).
- ALSA: hda/realtek: Remove Framework Laptop 16 from quirks (git-fixes).
- ALSA: hda/realtek: Support Lenovo Thinkbook 13x Gen 4 (stable-fixes).
- ALSA: hda/realtek: Support Lenovo Thinkbook 16P Gen 5 (stable-fixes).
- ALSA: hda/realtek: add quirk for Clevo V5[46]0TU (stable-fixes).
- ALSA: hda/realtek: cs35l41: Fixup remaining asus strix models (git-fixes).
- ALSA: hda/realtek: fix mute/micmute LEDs do not work for EliteBook 645/665 G11 (stable-fixes).
- ALSA: hda/realtek: fix mute/micmute LEDs do not work for ProBook 445/465 G11 (stable-fixes).
- ALSA: hda/relatek: Enable Mute LED on HP Laptop 15-gw0xxx (stable-fixes).
- ALSA: hda/tas2781: Add new quirk for Lenovo Hera2 Laptop (stable-fixes).
- ALSA: hda: cs35l41: Component should be unbound before deconstruction (git-fixes).
- ALSA: hda: cs35l41: Fix swapped l/r audio channels for Lenovo ThinBook 13x Gen4 (git-fixes).
- ALSA: hda: cs35l41: Possible null pointer dereference in cs35l41_hda_unbind() (git-fixes).
- ALSA: hda: cs35l41: Support Lenovo Thinkbook 13x Gen 4 (stable-fixes).
- ALSA: hda: cs35l41: Support Lenovo Thinkbook 16P Gen 5 (stable-fixes).
- ALSA: hda: cs35l56: Component should be unbound before deconstruction (git-fixes).
- ALSA: hda: cs35l56: Fix lifecycle of codec pointer (stable-fixes).
- ALSA: hda: tas2781: Component should be unbound before deconstruction (git-fixes).
- ALSA: pcm_dmaengine: Do not synchronize DMA channel when DMA is paused (git-fixes).
- ALSA: seq: Fix missing MSB in MIDI2 SPP conversion (git-fixes).
- ALSA: seq: Fix missing channel at encoding RPN/NRPN MIDI2 messages (git-fixes).
- ALSA: seq: ump: Fix missing System Reset message handling (git-fixes).
- ALSA: seq: ump: Skip useless ports for static blocks (git-fixes).
- ALSA: ump: Do not update FB name for static blocks (git-fixes).
- ALSA: ump: Force 1 Group for MIDI1 FBs (git-fixes).
- ALSA: usb-audio: Add a quirk for Sonix HD USB Camera (stable-fixes).
- ALSA: usb-audio: Fix microphone sound on HD webcam (stable-fixes).
- ALSA: usb-audio: Move HD Webcam quirk to the right place (git-fixes).
- ASoC: Intel: common: add ACPI matching tables for Arrow Lake (stable-fixes).
- ASoC: Intel: sof-sdw: really remove FOUR_SPEAKER quirk (git-fixes).
- ASoC: Intel: sof_sdw: add JD2 quirk for HP Omen 14 (stable-fixes).
- ASoC: Intel: sof_sdw: add quirk for Dell SKU 0C0F (stable-fixes).
- ASoC: Intel: use soc_intel_is_byt_cr() only when IOSF_MBI is reachable (git-fixes).
- ASoC: SOF: Intel: hda-pcm: Limit the maximum number of periods by MAX_BDL_ENTRIES (stable-fixes).
- ASoC: SOF: Intel: hda: fix null deref on system suspend entry (git-fixes).
- ASoC: SOF: imx8m: Fix DSP control regmap retrieval (git-fixes).
- ASoC: SOF: ipc4-topology: Preserve the DMA Link ID for ChainDMA on unprepare (git-fixes).
- ASoC: SOF: ipc4-topology: Use correct queue_id for requesting input pin format (stable-fixes).
- ASoC: SOF: pcm: Restrict DSP D0i3 during S0ix to IPC3 (stable-fixes).
- ASoC: SOF: sof-audio: Skip unprepare for in-use widgets on error rollback (stable-fixes).
- ASoC: TAS2781: Fix tasdev_load_calibrated_data() (git-fixes).
- ASoC: amd: Adjust error handling in case of absent codec device (git-fixes).
- ASoC: amd: acp: add a null check for chip_pdev structure (git-fixes).
- ASoC: amd: acp: remove i2s configuration check in acp_i2s_probe() (git-fixes).
- ASoC: amd: yc: Fix non-functional mic on ASUS M5602RA (stable-fixes).
- ASoC: amd: yc: Support mic on Lenovo Thinkpad E16 Gen 2 (bsc#1228269).
- ASoC: cs35l56: Accept values greater than 0 as IRQ numbers (git-fixes).
- ASoC: fsl-asoc-card: set priv->pdev before using it (git-fixes).
- ASoC: fsl: fsl_qmc_audio: Check devm_kasprintf() returned value (git-fixes).
- ASoC: max98088: Check for clk_prepare_enable() error (git-fixes).
- ASoC: q6apm-lpass-dai: close graph on prepare errors (git-fixes).
- ASoC: qcom: Adjust issues in case of DT error in asoc_qcom_lpass_cpu_platform_probe() (git-fixes).
- ASoC: rockchip: i2s-tdm: Fix trcm mode by setting clock on right mclk (git-fixes).
- ASoC: rt711-sdw: add missing readable registers (stable-fixes).
- ASoC: rt722-sdca-sdw: add debounce time for type detection (stable-fixes).
- ASoC: rt722-sdca-sdw: add silence detection register as volatile (stable-fixes).
- ASoC: sof: amd: fix for firmware reload failure in Vangogh platform (git-fixes).
- ASoC: ti: davinci-mcasp: Set min period size using FIFO config (stable-fixes).
- ASoC: ti: omap-hdmi: Fix too long driver name (stable-fixes).
- ASoC: topology: Do not assign fields that are already set (stable-fixes).
- ASoC: topology: Fix references to freed memory (stable-fixes).
- ASoc: tas2781: Enable RCA-based playback without DSP firmware download (git-fixes).
- Bluetooth: ISO: Check socket flag instead of hcon (git-fixes).
- Bluetooth: ISO: Fix BIS cleanup (stable-fixes).
- Bluetooth: Ignore too large handle values in BIG (git-fixes).
- Bluetooth: L2CAP: Fix rejecting L2CAP_CONN_PARAM_UPDATE_REQ (git-fixes).
- Bluetooth: Remove usage of the deprecated ida_simple_xx() API (stable-fixes).
- Bluetooth: ath3k: Fix multiple issues reported by checkpatch.pl (stable-fixes).
- Bluetooth: btintel: Refactor btintel_set_ppag() (git-fixes).
- Bluetooth: btnxpuart: Add handling for boot-signature timeout errors (git-fixes).
- Bluetooth: btnxpuart: Enable Power Save feature on startup (stable-fixes).
- Bluetooth: hci_bcm4377: Fix msgid release (git-fixes).
- Bluetooth: hci_bcm4377: Use correct unit for timeouts (git-fixes).
- Bluetooth: hci_core: cancel all works upon hci_unregister_dev() (stable-fixes).
- Bluetooth: hci_event: Fix setting of unicast qos interval (git-fixes).
- Bluetooth: hci_event: Remove code to removed CONFIG_BT_HS (stable-fixes).
- Bluetooth: hci_event: Set QoS encryption from BIGInfo report (git-fixes).
- Bluetooth: qca: Fix BT enable failure again for QCA6390 after warm reboot (git-fixes).
- Bluetooth: qca: set power_ctrl_enabled on NULL returned by gpiod_get_optional() (git-fixes).
- Enable CONFIG_SCHED_CLUSTER=y on arm64 (jsc#PED-8701).
- HID: Add quirk for Logitech Casa touchpad (stable-fixes).
- HID: Ignore battery for ELAN touchscreens 2F2C and 4116 (stable-fixes).
- HID: core: remove unnecessary WARN_ON() in implement() (git-fixes).
- HID: logitech-dj: Fix memory leak in logi_dj_recv_switch_to_dj_mode() (git-fixes).
- HID: mcp-2221: cancel delayed_work only when CONFIG_IIO is enabled (stable-fixes).
- HID: wacom: Modify pen IDs (git-fixes).
- Input: ads7846 - use spi_device_id table (stable-fixes).
- Input: elan_i2c - do not leave interrupt disabled on suspend failure (git-fixes).
- Input: elantech - fix touchpad state on resume for Lenovo N24 (stable-fixes).
- Input: ff-core - prefer struct_size over open coded arithmetic (stable-fixes).
- Input: i8042 - add Ayaneo Kun to i8042 quirk table (stable-fixes).
- Input: ili210x - fix ili251x_read_touch_data() return value (git-fixes).
- Input: qt1050 - handle CHIP_ID reading error (git-fixes).
- Input: silead - Always support 10 fingers (stable-fixes).
- Input: xpad - add support for ASUS ROG RAIKIRI (git-fixes).
- Input: xpad - add support for ASUS ROG RAIKIRI PRO (stable-fixes).
- KVM: SEV-ES: Delegate LBR virtualization to the processor (git-fixes).
- KVM: SEV-ES: Disallow SEV-ES guests when X86_FEATURE_LBRV is absent (git-fixes).
- KVM: SVM: WARN on vNMI + NMI window iff NMIs are outright masked (git-fixes).
- KVM: arm64: Use local TLBI on permission relaxation (bsc#1219478).
- KVM: x86/pmu: Prioritize VMX interception over #GP on RDPMC due to bad index (bsc#1226158).
- KVM: x86: Always sync PIR to IRR prior to scanning I/O APIC routes (git-fixes).
- KVM: x86: Do not advertise guest.MAXPHYADDR as host.MAXPHYADDR in CPUID (git-fixes).
- NFS: Fix READ_PLUS when server does not support OP_READ_PLUS (git-fixes).
- NFS: abort nfs_atomic_open_v23 if name is too long (bsc#1219847).
- NFS: add atomic_open for NFSv3 to handle O_TRUNC correctly (bsc#1219847).
- NFS: add barriers when testing for NFS_FSDATA_BLOCKED (git-fixes).
- NFS: avoid infinite loop in pnfs_update_layout (bsc#1219633 bsc#1226226).
- NFSD: Fix checksum mismatches in the duplicate reply cache (git-fixes).
- NFSv4.1 enforce rootpath check in fs_location query (git-fixes).
- NFSv4.x: by default serialize open/close operations (bsc#1223863 bsc#1227362).
- NFSv4: Fixup smatch warning for ambiguous return (git-fixes).
- PCI/ASPM: Update save_state when configuration changes (bsc#1226915)
- PCI/DPC: Fix use-after-free on concurrent DPC and hot-removal (git-fixes).
- PCI/MSI: Fix UAF in msi_capability_init (git-fixes).
- PCI/PM: Avoid D3cold for HP Pavilion 17 PC/1972 PCIe Ports (stable-fixes).
- PCI: Clear Secondary Status errors after enumeration (bsc#1226928)
- PCI: Do not wait for disconnected devices when resuming (git-fixes).
- PCI: Extend ACS configurability (bsc#1228090).
- PCI: Fix resource double counting on remove & rescan (git-fixes).
- PCI: Introduce cleanup helpers for device reference counts and locks (stable-fixes).
- PCI: dw-rockchip: Fix initial PERST# GPIO value (git-fixes).
- PCI: dwc: Fix index 0 incorrectly being interpreted as a free ATU slot (git-fixes).
- PCI: endpoint: Clean up error handling in vpci_scan_bus() (git-fixes).
- PCI: endpoint: Fix error handling in epf_ntb_epc_cleanup() (git-fixes).
- PCI: endpoint: pci-epf-test: Make use of cached 'epc_features' in pci_epf_test_core_init() (git-fixes).
- PCI: keystone: Do not enable BAR 0 for AM654x (git-fixes).
- PCI: keystone: Fix NULL pointer dereference in case of DT error in ks_pcie_setup_rc_app_regs() (git-fixes).
- PCI: keystone: Relocate ks_pcie_set/clear_dbi_mode() (git-fixes).
- PCI: qcom-ep: Disable resources unconditionally during PERST# assert (git-fixes).
- PCI: rcar: Demote WARN() to dev_warn_ratelimited() in rcar_pcie_wakeup() (git-fixes).
- PCI: rockchip: Use GPIOD_OUT_LOW flag while requesting ep_gpio (git-fixes).
- PCI: tegra194: Set EP alignment restriction for inbound ATU (git-fixes).
- PCI: vmd: Create domain symlink before pci_bus_add_devices() (bsc#1227363).
- RAS/AMD/ATL: Fix MI300 bank hash (bsc#1225300).
- RAS/AMD/ATL: Use system settings for MI300 DRAM to normalized address translation (bsc#1225300).
- RDMA/bnxt_re: Fix the max msix vectors macro (git-fixes)
- RDMA/mana_ib: Ignore optional access flags for MRs (git-fixes).
- RDMA/mlx5: Add check for srq max_sge attribute (git-fixes)
- RDMA/mlx5: Ensure created mkeys always have a populated rb_key (git-fixes)
- RDMA/mlx5: Fix unwind flow as part of mlx5_ib_stage_init_init (git-fixes)
- RDMA/mlx5: Follow rb_key.ats when creating new mkeys (git-fixes)
- RDMA/mlx5: Remove extra unlock on error path (git-fixes)
- RDMA/restrack: Fix potential invalid address access (git-fixes)
- RDMA/rxe: Fix data copy for IB_SEND_INLINE (git-fixes)
- RDMA/rxe: Fix responder length checking for UD request packets (git-fixes)
- SUNRPC: Fix gss_free_in_token_pages() (git-fixes).
- SUNRPC: Fix loop termination condition in gss_free_in_token_pages() (git-fixes).
- SUNRPC: avoid soft lockup when transmitting UDP to reachable server (bsc#1225272).
- SUNRPC: return proper error from gss_wrap_req_priv (git-fixes).
- Temporarily drop KVM patch that caused a regression (bsc#1226158)
- USB: Add USB_QUIRK_NO_SET_INTF quirk for START BP-850k (stable-fixes).
- USB: class: cdc-wdm: Fix CPU lockup caused by excessive log messages (git-fixes).
- USB: core: Fix duplicate endpoint bug by clearing reserved bits in the descriptor (git-fixes).
- USB: serial: mos7840: fix crash on resume (git-fixes).
- USB: serial: option: add Fibocom FM350-GL (stable-fixes).
- USB: serial: option: add Netprisma LCUK54 series modules (stable-fixes).
- USB: serial: option: add Rolling RW350-GL variants (stable-fixes).
- USB: serial: option: add Telit FN912 rmnet compositions (stable-fixes).
- USB: serial: option: add Telit generic core-dump composition (stable-fixes).
- USB: serial: option: add support for Foxconn T99W651 (stable-fixes).
- USB: xen-hcd: Traverse host/ when CONFIG_USB_XEN_HCD is selected (git-fixes).
- X.509: Fix the parser of extended key usage for length (bsc#1218820).
- arm64/io: Provide a WC friendly __iowriteXX_copy() (bsc#1226502)
- arm64/io: add constant-argument check (bsc#1226502 git-fixes)
- arm64: asm-bug: Add .align 2 to the end of __BUG_ENTRY (git-fixes).
- arm64: dts: freescale: imx8mm-verdin: enable hysteresis on slow input (git-fixes)
- arm64: dts: imx8qm-mek: fix gpio number for reg_usdhc2_vmmc (git-fixes)
- arm64: dts: imx93-11x11-evk: Remove the 'no-sdio' property (git-fixes)
- arm64: dts: rockchip: Add mdio and ethernet-phy nodes to (git-fixes)
- arm64: dts: rockchip: Add missing power-domains for rk356x vop_mmu (git-fixes)
- arm64: dts: rockchip: Add pinctrl for UART0 to rk3308-rock-pi-s (git-fixes)
- arm64: dts: rockchip: Add sdmmc related properties on (git-fixes)
- arm64: dts: rockchip: Add sound-dai-cells for RK3368 (git-fixes)
- arm64: dts: rockchip: Drop invalid mic-in-differential on (git-fixes)
- arm64: dts: rockchip: Fix SD NAND and eMMC init on rk3308-rock-pi-s (git-fixes)
- arm64: dts: rockchip: Fix mic-in-differential usage on (git-fixes)
- arm64: dts: rockchip: Fix mic-in-differential usage on rk3566-roc-pc (git-fixes)
- arm64: dts: rockchip: Fix the DCDC_REG2 minimum voltage on Quartz64 (git-fixes)
- arm64: dts: rockchip: Fix the value of `dlg,jack-det-rate` mismatch (git-fixes)
- arm64: dts: rockchip: Increase VOP clk rate on RK3328 (git-fixes)
- arm64: dts: rockchip: Rename LED related pinctrl nodes on (git-fixes)
- arm64: dts: rockchip: Update WIFi/BT related nodes on (git-fixes)
- arm64: dts: rockchip: fix PMIC interrupt pin on ROCK Pi E (git-fixes)
- arm64: mm: Batch dsb and isb when populating pgtables (jsc#PED-8688).
- arm64: mm: Do not remap pgtables for allocate vs populate (jsc#PED-8688).
- arm64: mm: Do not remap pgtables per-cont(pte|pmd) block (jsc#PED-8688).
- ata,scsi: libata-core: Do not leak memory for ata_port struct members (git-fixes).
- ata: ahci: Clean up sysfs file on error (git-fixes).
- ata: libata-core: Fix double free on error (git-fixes).
- ata: libata-core: Fix null pointer dereference on error (git-fixes).
- ata: libata-scsi: Fix offsets for the fixed format sense data (git-fixes).
- auxdisplay: ht16k33: Drop reference after LED registration (git-fixes).
- ax25: Fix refcount imbalance on inbound connections (git-fixes).
- batman-adv: Do not accept TT entries for out-of-spec VIDs (git-fixes).
- batman-adv: bypass empty buckets in batadv_purge_orig_ref() (stable-fixes).
- block: Move checking GENHD_FL_NO_PART to bdev_add_partition() (bsc#1226213).
- bluetooth/hci: disallow setting handle bigger than HCI_CONN_HANDLE_MAX (git-fixes).
- bpf: check bpf_func_state->callback_depth when pruning states (bsc#1225903).
- bpf: correct loop detection for iterators convergence (bsc#1225903).
- bpf: exact states comparison for iterator convergence checks (bsc#1225903).
- bpf: extract __check_reg_arg() utility function (bsc#1225903).
- bpf: extract same_callsites() as utility function (bsc#1225903).
- bpf: extract setup_func_entry() utility function (bsc#1225903).
- bpf: keep track of max number of bpf_loop callback iterations (bsc#1225903).
- bpf: move explored_state() closer to the beginning of verifier.c (bsc#1225903).
- bpf: print full verifier states on infinite loop detection (bsc#1225903).
- bpf: verify callbacks as if they are called unknown number of times (bsc#1225903).
- bpf: widening for callback iterators (bsc#1225903).
- bus: mhi: host: allow MHI client drivers to provide the firmware via a pointer (bsc#1227149).
- bytcr_rt5640 : inverse jack detect for Archos 101 cesium (stable-fixes).
- cachefiles: add output string to cachefiles_obj_[get|put]_ondemand_fd (git-fixes).
- cachefiles: remove requests from xarray during flushing requests (bsc#1226588).
- can: kvaser_usb: Explicitly initialize family in leafimx driver_info struct (git-fixes).
- can: kvaser_usb: fix return value for hif_usb_send_regout (stable-fixes).
- can: mcp251xfd: fix infinite loop when xmit fails (git-fixes).
- cdrom: rearrange last_media_change check to avoid unintentional overflow (stable-fixes).
- ceph: add ceph_cap_unlink_work to fire check_caps() immediately (bsc#1226022).
- ceph: always check dir caps asynchronously (bsc#1226022).
- ceph: always queue a writeback when revoking the Fb caps (bsc#1226022).
- ceph: break the check delayed cap loop every 5s (bsc#1226022).
- ceph: fix incorrect kmalloc size of pagevec mempool (bsc#1228417).
- ceph: switch to use cap_delay_lock for the unlink delay list (bsc#1226022).
- char: tpm: Fix possible memory leak in tpm_bios_measurements_open() (git-fixes).
- checkpatch: really skip LONG_LINE_* when LONG_LINE is ignored (git-fixes).
- cifs: Add a laundromat thread for cached directories (git-fixes, bsc#1225172).
- clk: davinci: da8xx-cfgchip: Initialize clk_init_data before use (git-fixes).
- clk: mediatek: mt8183: Only enable runtime PM on mt8183-mfgcfg (git-fixes).
- clk: qcom: clk-alpha-pll: set ALPHA_EN bit for Stromer Plus PLLs (git-fixes).
- clk: qcom: gcc-sm6350: Fix gpll6* & gpll7 parents (git-fixes).
- clkdev: Update clkdev id usage to allow for longer names (stable-fixes).
- config/arm64: Enable CoreSight PMU drivers (bsc#1228289 jsc#PED-7859)
- counter: ti-eqep: enable clock at probe (git-fixes).
- cpufreq/amd-pstate: Fix the scaling_max_freq setting on shared memory CPPC systems (git-fixes).
- cpufreq: amd-pstate: Fix the inconsistency in max frequency units (git-fixes).
- cpufreq: amd-pstate: fix memory leak on CPU EPP exit (stable-fixes).
- cpufreq: ti-cpufreq: Handle deferred probe with dev_err_probe() (git-fixes).
- crypto/ecdh: make ecdh_compute_value() to zeroize the public key (bsc#1222768).
- crypto/ecdsa: make ecdsa_ecc_ctx_deinit() to zeroize the public key (bsc#1222768).
- crypto: aead,cipher - zeroize key buffer after use (stable-fixes).
- crypto: ccp - Fix null pointer dereference in __sev_snp_shutdown_locked (git-fixes).
- crypto: deflate - Add aliases to deflate (bsc#1227190).
- crypto: ecdh - explicitly zeroize private_key (stable-fixes).
- crypto: ecdsa - Fix the public key format description (git-fixes).
- crypto: ecrdsa - Fix module auto-load on add_key (stable-fixes).
- crypto: hisilicon/debugfs - Fix debugfs uninit process issue (stable-fixes).
- crypto: hisilicon/qm - Add the err memory release process to qm uninit (stable-fixes).
- crypto: hisilicon/sec - Fix memory leak for sec resource release (stable-fixes).
- crypto: iaa - Account for cpu-less numa nodes (bsc#1227190).
- crypto: qat - extend scope of lock in adf_cfg_add_key_value_param() (git-fixes).
- cxl/region: Fix cxlr_pmem leaks (git-fixes).
- cxl/region: Fix memregion leaks in devm_cxl_add_region() (git-fixes).
- cxl/test: Add missing vmalloc.h for tools/testing/cxl/test/mem.c (git-fixes).
- cxl/trace: Correct DPA field masks for general_media & dram events (git-fixes).
- decompress_bunzip2: fix rare decompression failure (git-fixes).
- devres: Fix devm_krealloc() wasting memory (git-fixes).
- devres: Fix memory leakage caused by driver API devm_free_percpu() (git-fixes).
- dlm: fix user space lock decision to copy lvb (git-fixes).
- dma: fix call order in dmam_free_coherent (git-fixes).
- dmaengine: idxd: Fix possible Use-After-Free in irq_process_work_list (git-fixes).
- dmaengine: ioatdma: Fix error path in ioat3_dma_probe() (git-fixes).
- dmaengine: ioatdma: Fix kmemleak in ioat_pci_probe() (git-fixes).
- dmaengine: ioatdma: Fix leaking on version mismatch (git-fixes).
- dmaengine: ioatdma: Fix missing kmem_cache_destroy() (git-fixes).
- dmaengine: ti: k3-udma: Fix BCHAN count with UHC and HC channels (git-fixes).
- docs: crypto: async-tx-api: fix broken code example (git-fixes).
- dpll: spec: use proper enum for pin capabilities attribute (git-fixes).
- drivers/xen: Improve the late XenStore init protocol (git-fixes).
- drivers: core: synchronize really_probe() and dev_uevent() (git-fixes).
- drivers: soc: xilinx: check return status of get_api_version() (git-fixes).
- drm/amd/amdgpu: Fix uninitialized variable warnings (git-fixes).
- drm/amd/display: ASSERT when failing to find index by plane/stream id (stable-fixes).
- drm/amd/display: Account for cursor prefetch BW in DML1 mode support (stable-fixes).
- drm/amd/display: Add VCO speed parameter for DCN31 FPU (stable-fixes).
- drm/amd/display: Add dtbclk access to dcn315 (stable-fixes).
- drm/amd/display: Add refresh rate range check (stable-fixes).
- drm/amd/display: Allocate zero bw after bw alloc enable (stable-fixes).
- drm/amd/display: Check index msg_id before read or write (stable-fixes).
- drm/amd/display: Check pipe offset before setting vblank (stable-fixes).
- drm/amd/display: Disable seamless boot on 128b/132b encoding (stable-fixes).
- drm/amd/display: Exit idle optimizations before HDCP execution (stable-fixes).
- drm/amd/display: Fix DC mode screen flickering on DCN321 (stable-fixes).
- drm/amd/display: Fix array-index-out-of-bounds in dml2/FCLKChangeSupport (stable-fixes).
- drm/amd/display: Fix overlapping copy within dml_core_mode_programming (stable-fixes).
- drm/amd/display: Fix refresh rate range for some panel (stable-fixes).
- drm/amd/display: Fix uninitialized variables in DM (stable-fixes).
- drm/amd/display: Move 'struct scaler_data' off stack (git-fixes).
- drm/amd/display: Remove pixle rate limit for subvp (stable-fixes).
- drm/amd/display: Revert Remove pixle rate limit for subvp (stable-fixes).
- drm/amd/display: Send DP_TOTAL_LTTPR_CNT during detection if LTTPR is present (stable-fixes).
- drm/amd/display: Set color_mgmt_changed to true on unsuspend (stable-fixes).
- drm/amd/display: Skip finding free audio for unknown engine_id (stable-fixes).
- drm/amd/display: Skip pipe if the pipe idx not set properly (stable-fixes).
- drm/amd/display: Update efficiency bandwidth for dcn351 (stable-fixes).
- drm/amd/display: Workaround register access in idle race with cursor (stable-fixes).
- drm/amd/display: change dram_clock_latency to 34us for dcn35 (stable-fixes).
- drm/amd/display: revert Exit idle optimizations before HDCP execution (stable-fixes).
- drm/amd/pm: Fix aldebaran pcie speed reporting (git-fixes).
- drm/amd/pm: Restore config space after reset (stable-fixes).
- drm/amd/pm: remove logically dead code for renoir (git-fixes).
- drm/amd: Fix shutdown (again) on some SMU v13.0.4/11 platforms (git-fixes).
- drm/amdgpu/atomfirmware: add intergrated info v2.3 table (stable-fixes).
- drm/amdgpu/atomfirmware: fix parsing of vram_info (stable-fixes).
- drm/amdgpu/atomfirmware: silence UBSAN warning (stable-fixes).
- drm/amdgpu/mes: fix use-after-free issue (stable-fixes).
- drm/amdgpu: Check if NBIO funcs are NULL in amdgpu_device_baco_exit (git-fixes).
- drm/amdgpu: Fix VRAM memory accounting (stable-fixes).
- drm/amdgpu: Fix buffer size in gfx_v9_4_3_init_ cp_compute_microcode() and rlc_microcode() (git-fixes).
- drm/amdgpu: Fix memory range calculation (git-fixes).
- drm/amdgpu: Fix pci state save during mode-1 reset (git-fixes).
- drm/amdgpu: Fix signedness bug in sdma_v4_0_process_trap_irq() (git-fixes).
- drm/amdgpu: Fix the ring buffer size for queue VM flush (stable-fixes).
- drm/amdgpu: Fix uninitialized variable warnings (stable-fixes).
- drm/amdgpu: Indicate CU havest info to CP (stable-fixes).
- drm/amdgpu: Initialize timestamp for some legacy SOCs (stable-fixes).
- drm/amdgpu: Remove GC HW IP 9.3.0 from noretry=1 (git-fixes).
- drm/amdgpu: Update BO eviction priorities (stable-fixes).
- drm/amdgpu: Using uninitialized value *size when calling amdgpu_vce_cs_reloc (stable-fixes).
- drm/amdgpu: add error handle to avoid out-of-bounds (stable-fixes).
- drm/amdgpu: avoid using null object of framebuffer (stable-fixes).
- drm/amdgpu: fix UBSAN warning in kv_dpm.c (stable-fixes).
- drm/amdgpu: fix locking scope when flushing tlb (stable-fixes).
- drm/amdgpu: fix the warning about the expression (int)size - len (stable-fixes).
- drm/amdgpu: fix uninitialized scalar variable warning (stable-fixes).
- drm/amdgpu: init microcode chip name from ip versions (stable-fixes).
- drm/amdgpu: silence UBSAN warning (stable-fixes).
- drm/amdkfd: Add VRAM accounting for SVM migration (stable-fixes).
- drm/amdkfd: Fix CU Masking for GFX 9.4.3 (git-fixes).
- drm/amdkfd: Flush the process wq before creating a kfd_process (stable-fixes).
- drm/amdkfd: Let VRAM allocations go to GTT domain on small APUs (stable-fixes).
- drm/arm/komeda: Fix komeda probe failing if there are no links in the secondary pipeline (git-fixes).
- drm/bridge/panel: Fix runtime warning on panel bridge release (git-fixes).
- drm/bridge: it6505: fix hibernate to resume no display issue (git-fixes).
- drm/bridge: samsung-dsim: Set P divider based on min/max of fin pll (git-fixes).
- drm/dp_mst: Fix all mstb marked as not probed after suspend/resume (git-fixes).
- drm/drm_file: Fix pid refcounting race (git-fixes).
- drm/etnaviv: fix DMA direction handling for cached RW buffers (git-fixes).
- drm/etnaviv: fix tx clock gating on some GC7000 variants (stable-fixes).
- drm/exynos/vidi: fix memory leak in .get_modes() (stable-fixes).
- drm/exynos: dp: drop driver owner initialization (stable-fixes).
- drm/exynos: hdmi: report safe 640x480 mode as a fallback when no EDID found (git-fixes).
- drm/fbdev-dma: Fix framebuffer mode for big endian devices (git-fixes).
- drm/fbdev-dma: Only set smem_start is enable per module option (git-fixes).
- drm/fbdev-generic: Fix framebuffer on big endian devices (git-fixes).
- drm/gma500: fix null pointer dereference in cdv_intel_lvds_get_modes (git-fixes).
- drm/gma500: fix null pointer dereference in psb_intel_lvds_get_modes (git-fixes).
- drm/i915/dp: Do not switch the LTTPR mode on an active link (git-fixes).
- drm/i915/gt: Do not consider preemption during execlists_dequeue for gen8 (git-fixes).
- drm/i915/gt: Fix potential UAF by revoke of fence registers (git-fixes).
- drm/i915/hwmon: Get rid of devm (stable-fixes).
- drm/i915/mso: using joiner is not possible with eDP MSO (git-fixes).
- drm/komeda: check for error-valued pointer (git-fixes).
- drm/lima: Mark simple_ondemand governor as softdep (git-fixes).
- drm/lima: add mask irq callback to gp and pp (stable-fixes).
- drm/lima: fix shared irq handling on driver remove (stable-fixes).
- drm/lima: mask irqs in timeout path before hard reset (stable-fixes).
- drm/mediatek: Add DRM_MODE_ROTATE_0 to rotation property (git-fixes).
- drm/mediatek: Add OVL compatible name for MT8195 (git-fixes).
- drm/mediatek: Add missing plane settings when async update (git-fixes).
- drm/mediatek: Call drm_atomic_helper_shutdown() at shutdown time (stable-fixes).
- drm/mediatek: Fix XRGB setting error in Mixer (git-fixes).
- drm/mediatek: Fix XRGB setting error in OVL (git-fixes).
- drm/mediatek: Fix bit depth overwritten for mtk_ovl_set bit_depth() (git-fixes).
- drm/mediatek: Fix destination alpha error in OVL (git-fixes).
- drm/mediatek: Remove less-than-zero comparison of an unsigned value (git-fixes).
- drm/mediatek: Set DRM mode configs accordingly (git-fixes).
- drm/mediatek: Support DRM plane alpha in Mixer (git-fixes).
- drm/mediatek: Support DRM plane alpha in OVL (git-fixes).
- drm/mediatek: Support RGBA8888 and RGBX8888 in OVL on MT8195 (git-fixes).
- drm/mediatek: Turn off the layers with zero width or height (git-fixes).
- drm/mediatek: Use 8-bit alpha in ETHDR (git-fixes).
- drm/meson: fix canvas release in bind function (git-fixes).
- drm/mgag200: Bind I2C lifetime to DRM device (git-fixes).
- drm/mgag200: Set DDC timeout in milliseconds (git-fixes).
- drm/mipi-dsi: Fix theoretical int overflow in mipi_dsi_dcs_write_seq() (git-fixes).
- drm/mipi-dsi: Fix theoretical int overflow in mipi_dsi_generic_write_seq() (git-fixes).
- drm/msm/dpu: drop validity checks for clear_pending_flush() ctl op (git-fixes).
- drm/msm/dpu: fix encoder irq wait skip (git-fixes).
- drm/msm/dsi: set VIDEO_COMPRESSION_MODE_CTRL_WC (git-fixes).
- drm/msm/mdp5: Remove MDP_CAP_SRC_SPLIT from msm8x53_config (git-fixes).
- drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_hd_modes (stable-fixes).
- drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_ld_modes (stable-fixes).
- drm/nouveau: do not attempt to schedule hpd_work on headless cards (git-fixes).
- drm/nouveau: fix null pointer dereference in nouveau_connector_get_modes (git-fixes).
- drm/panel: boe-tv101wum-nl6: Check for errors on the NOP in prepare() (git-fixes).
- drm/panel: boe-tv101wum-nl6: If prepare fails, disable GPIO before regulators (git-fixes).
- drm/panel: himax-hx8394: Handle errors from mipi_dsi_dcs_set_display_on() better (git-fixes).
- drm/panel: ilitek-ili9881c: Fix warning with GPIO controllers that sleep (stable-fixes).
- drm/panel: ilitek-ili9882t: Check for errors on the NOP in prepare() (git-fixes).
- drm/panel: ilitek-ili9882t: If prepare fails, disable GPIO before regulators (git-fixes).
- drm/panel: simple: Add missing display timing flags for KOE TX26D202VM0BWA (git-fixes).
- drm/panel: sitronix-st7789v: Add check for of_drm_get_panel_orientation (git-fixes).
- drm/panfrost: Mark simple_ondemand governor as softdep (git-fixes).
- drm/qxl: Add check for drm_cvt_mode (git-fixes).
- drm/radeon/radeon_display: Decrease the size of allocated memory (stable-fixes).
- drm/radeon: check bo_va->bo is non-NULL before using it (stable-fixes).
- drm/radeon: fix UBSAN warning in kv_dpm.c (stable-fixes).
- drm/rockchip: vop2: Fix the port mux of VP2 (git-fixes).
- drm/sun4i: hdmi: Convert encoder to atomic (stable-fixes).
- drm/sun4i: hdmi: Move mode_set into enable (stable-fixes).
- drm/ttm: Always take the bo delayed cleanup path for imported bos (git-fixes).
- drm/udl: Remove DRM_CONNECTOR_POLL_HPD (git-fixes).
- drm/vmwgfx: 3D disabled should not effect STDU memory limits (git-fixes).
- drm/vmwgfx: Do not memcmp equivalent pointers (git-fixes).
- drm/vmwgfx: Filter modes which exceed graphics memory (git-fixes).
- drm/vmwgfx: Fix missing HYPERVISOR_GUEST dependency (stable-fixes).
- drm: panel-orientation-quirks: Add quirk for Aya Neo KUN (stable-fixes).
- drm: panel-orientation-quirks: Add quirk for Valve Galileo (stable-fixes).
- drm: zynqmp_dpsub: Fix an error handling path in zynqmp_dpsub_probe() (git-fixes).
- drm: zynqmp_kms: Fix AUX bus not getting unregistered (git-fixes).
- eeprom: at24: Probe for DDR3 thermal sensor in the SPD case (stable-fixes).
- eeprom: digsy_mtc: Fix 93xx46 driver probe failure (git-fixes).
- efi/x86: Free EFI memory map only when installing a new one (git-fixes).
- erofs: ensure m_llen is reset to 0 if metadata is invalid (git-fixes).
- exfat: fix potential deadlock on __exfat_get_dentry_set (git-fixes).
- f2fs: fix error path of __f2fs_build_free_nids (git-fixes).
- filelock: fix potential use-after-free in posix_lock_inode (git-fixes).
- firmware: cs_dsp: Fix overflow checking of wmfw header (git-fixes).
- firmware: cs_dsp: Prevent buffer overrun when processing V2 alg headers (git-fixes).
- firmware: cs_dsp: Return error if block header overflows file (git-fixes).
- firmware: cs_dsp: Use strnlen() on name fields in V1 wmfw files (git-fixes).
- firmware: cs_dsp: Validate payload length before processing block (git-fixes).
- firmware: dmi: Stop decoding on broken entry (stable-fixes).
- firmware: psci: Fix return value from psci_system_suspend() (git-fixes).
- firmware: turris-mox-rwtm: Do not complete if there are no waiters (git-fixes).
- firmware: turris-mox-rwtm: Fix checking return value of wait_for_completion_timeout() (git-fixes).
- firmware: turris-mox-rwtm: Initialize completion before mailbox (git-fixes).
- fpga: dfl-pci: add PCI subdevice ID for Intel D5005 card (stable-fixes).
- fs/file: fix the check in find_next_fd() (git-fixes).
- fs/pipe: Fix lockdep false-positive in watchqueue pipe_write() (git-fixes).
- fuse: verify {g,u}id mount options correctly (bsc#1228193).
- genirq/irqdesc: Prevent use-after-free in irq_find_at_or_after() (git-fixes).
- gfs2: Do not forget to complete delayed withdraw (git-fixes).
- gfs2: Fix 'ignore unlock failures after withdraw' (git-fixes).
- gfs2: Fix invalid metadata access in punch_hole (git-fixes).
- gfs2: Get rid of gfs2_alloc_blocks generation parameter (git-fixes).
- gfs2: Rename gfs2_lookup_{ simple => meta } (git-fixes).
- gfs2: Use mapping->gfp_mask for metadata inodes (git-fixes).
- gfs2: convert to ctime accessor functions (git-fixes).
- gpio: davinci: Validate the obtained number of IRQs (git-fixes).
- gpio: lpc32xx: fix module autoloading (stable-fixes).
- gpio: mc33880: Convert comma to semicolon (git-fixes).
- gpio: pca953x: fix pca953x_irq_bus_sync_unlock race (stable-fixes).
- gpio: tqmx86: fix broken IRQ_TYPE_EDGE_BOTH interrupt type (git-fixes).
- gpio: tqmx86: fix typo in Kconfig label (git-fixes).
- gpio: tqmx86: introduce shadow register for GPIO output value (git-fixes).
- gpio: tqmx86: store IRQ trigger type and unmask status separately (git-fixes).
- gpiolib: cdev: Disallow reconfiguration without direction (uAPI v1) (git-fixes).
- hfsplus: fix to avoid false alarm of circular locking (git-fixes).
- hfsplus: fix uninit-value in copy_name (git-fixes).
- hpet: Support 32-bit userspace (git-fixes).
- hwmon: (adt7475) Fix default duty on fan is disabled (git-fixes).
- hwmon: (max6697) Fix swapped temp{1,8} critical alarms (git-fixes).
- hwmon: (max6697) Fix underflow when writing limit attributes (git-fixes).
- hwrng: amd - Convert PCIBIOS_* return codes to errnos (git-fixes).
- hwrng: core - Fix wrong quality calculation at hw rng registration (git-fixes).
- i2c: at91: Fix the functionality flags of the slave-only interface (git-fixes).
- i2c: designware: Fix the functionality flags of the slave-only interface (git-fixes).
- i2c: i801: Annotate apanel_addr as __ro_after_init (stable-fixes).
- i2c: mark HostNotify target address as used (git-fixes).
- i2c: ocores: set IACK bit after core is enabled (git-fixes).
- i2c: pnx: Fix potential deadlock warning from del_timer_sync() call in isr (git-fixes).
- i2c: rcar: bring hardware to known state when probing (git-fixes).
- i2c: testunit: avoid re-issued work after read message (git-fixes).
- i2c: testunit: correct Kconfig description (git-fixes).
- i2c: testunit: discard write requests while old command is running (git-fixes).
- i2c: testunit: do not erase registers after STOP (git-fixes).
- i40e: fix: remove needless retries of NVM update (bsc#1227736).
- iio: Fix the sorting functionality in iio_gts_build_avail_time_table (git-fixes).
- iio: accel: fxls8962af: select IIO_BUFFER & IIO_KFIFO_BUF (git-fixes).
- iio: accel: mxc4005: Reset chip on probe() and resume() (stable-fixes).
- iio: accel: mxc4005: allow module autoloading via OF compatible (stable-fixes).
- iio: adc: ad7266: Fix variable checking bug (git-fixes).
- iio: adc: ad9467: fix scan type sign (git-fixes).
- iio: adc: ad9467: use chip_info variables instead of array (stable-fixes).
- iio: adc: ad9467: use spi_get_device_match_data() (stable-fixes).
- iio: chemical: bme680: Fix calibration data variable (git-fixes).
- iio: chemical: bme680: Fix overflows in compensate() functions (git-fixes).
- iio: chemical: bme680: Fix pressure value output (git-fixes).
- iio: chemical: bme680: Fix sensor data read operation (git-fixes).
- iio: dac: ad5592r: fix temperature channel scaling value (git-fixes).
- iio: frequency: adrf6780: rm clk provider include (git-fixes).
- iio: imu: inv_icm42600: delete unneeded update watermark call (git-fixes).
- iio: pressure: bmp280: Fix BMP580 temperature reading (stable-fixes).
- iio: pressure: fix some word spelling errors (stable-fixes).
- iio: xilinx-ams: Do not include ams_ctrl_channels in scan_mask (git-fixes).
- input: Add event code for accessibility key (stable-fixes).
- input: Add support for 'Do Not Disturb' (stable-fixes).
- intel_th: pci: Add Granite Rapids SOC support (stable-fixes).
- intel_th: pci: Add Granite Rapids support (stable-fixes).
- intel_th: pci: Add Lunar Lake support (stable-fixes).
- intel_th: pci: Add Meteor Lake-S CPU support (stable-fixes).
- intel_th: pci: Add Meteor Lake-S support (stable-fixes).
- intel_th: pci: Add Sapphire Rapids SOC support (stable-fixes).
- interconnect: qcom: qcm2290: Fix mas_snoc_bimc RPM master ID (git-fixes).
- io-wq: write next_work before dropping acct_lock (git-fixes).
- io_uring/io-wq: Use set_bit() and test_bit() at worker->flags (git-fixes).
- io_uring/io-wq: avoid garbage value of 'match' in io_wq_enqueue() (git-fixes).
- io_uring/kbuf: get rid of bl->is_ready (git-fixes).
- io_uring/kbuf: get rid of lower BGID lists (git-fixes).
- io_uring/kbuf: protect io_buffer_list teardown with a reference (git-fixes). Reuses a padding space in the structure.
- io_uring/kbuf: rename is_mapped (git-fixes).
- io_uring/net: correct the type of variable (git-fixes).
- io_uring/net: correctly handle multishot recvmsg retry setup (git-fixes).
- io_uring/net: fix sendzc lazy wake polling (git-fixes).
- io_uring/net: move receive multishot out of the generic msghdr path (git-fixes).
- io_uring/net: restore msg_control on sendzc retry (git-fixes).
- io_uring/net: unify how recvmsg and sendmsg copy in the msghdr (git-fixes).
- io_uring/rsrc: do not lock while !TASK_RUNNING (git-fixes).
- io_uring/rsrc: fix incorrect assignment of iter->nr_segs in io_import_fixed (git-fixes).
- io_uring/rw: do not allow multishot reads without NOWAIT support (git-fixes).
- io_uring/rw: return IOU_ISSUE_SKIP_COMPLETE for multishot retry (git-fixes).
- io_uring/sqpoll: work around a potential audit memory leak (git-fixes).
- io_uring/unix: drop usage of io_uring socket (git-fixes).
- io_uring: Fix io_cqring_wait() not restoring sigmask on get_timespec64() failure (git-fixes).
- io_uring: clean rings on NO_MMAP alloc fail (git-fixes).
- io_uring: clear opcode specific data for an early failure (git-fixes).
- io_uring: do not save/restore iowait state (git-fixes).
- io_uring: fail NOP if non-zero op flags is passed in (git-fixes).
- io_uring: fix io_queue_proc modifying req->flags (git-fixes).
- io_uring: fix mshot io-wq checks (git-fixes).
- io_uring: fix mshot read defer taskrun cqe posting (git-fixes).
- io_uring: fix poll_remove stalled req completion (git-fixes).
- io_uring: remove looping around handling traditional task_work (git-fixes).
- io_uring: remove unconditional looping in local task_work handling (git-fixes).
- io_uring: use private workqueue for exit work (git-fixes).
- io_uring: use the right type for work_llist empty check (git-fixes).
- iommu/amd: Enhance def_domain_type to handle untrusted device (git-fixes).
- iommu/amd: Fix panic accessing amd_iommu_enable_faulting (bsc#1224767).
- iommu/amd: Fix sysfs leak in iommu init (git-fixes).
- iommu/arm-smmu-v3: Free MSIs in case of ENOMEM (git-fixes).
- iommu/vt-d: Allocate DMAR fault interrupts locally (bsc#1224767).
- iommu/vt-d: Fix WARN_ON in iommu probe path (git-fixes).
- iommu/vt-d: Improve ITE fault handling if target device isn't present (git-fixes).
- iommu/vt-d: Use rbtree to track iommu probed devices (git-fixes).
- iommu: Fix compilation without CONFIG_IOMMU_INTEL (git-fixes).
- iommu: Return right value in iommu_sva_bind_device() (git-fixes).
- iommu: Undo pasid attachment only for the devices that have succeeded (git-fixes).
- iommu: mtk: fix module autoloading (git-fixes).
- ipmi: ssif_bmc: prevent integer overflow on 32bit systems (git-fixes).
- ipvs: Fix checksumming on GSO of SCTP packets (bsc#1221958)
- iwlwifi: fw: fix more kernel-doc warnings (bsc#1227149).
- iwlwifi: mvm: Drop unused fw_trips_index[] from iwl_mvm_thermal_device (bsc#1227149).
- iwlwifi: mvm: Populate trip table before registering thermal zone (bsc#1227149).
- iwlwifi: mvm: Use for_each_thermal_trip() for walking trip points (bsc#1227149).
- jffs2: Fix potential illegal address access in jffs2_free_inode (git-fixes).
- jfs: Fix array-index-out-of-bounds in diFree (git-fixes).
- jfs: xattr: fix buffer overflow for invalid xattr (bsc#1227383).
- kABI fix of KVM: x86/pmu: Prioritize VMX interception over
- kABI workaround for sof_ipc_pcm_ops (git-fixes).
- kABI workaround for wireless updates (bsc#1227149).
- kABI: bpf: verifier kABI workaround (bsc#1225903).
- kabi/severities: Ignore io_uring internal symbols
- kabi/severities: cleanup and update for WiFi driver entries (bsc#1227149)
- kabi/severities: cover all ath/* drivers (bsc#1227149) All symbols in ath/* network drivers are local and can be ignored
- kabi/severities: cover all mt76 modules (bsc#1227149)
- kabi/severities: ignore amd pds internal symbols
- kabi/severities: ignore kABI changes Realtek WiFi drivers (bsc#1227149) All those symbols are local and used for its own helpers
- kabi: Use __iowriteXX_copy_inlined for in-kernel modules (bsc#1226502)
- kbuild: Fix build target deb-pkg: ln: failed to create hard link (git-fixes).
- kbuild: Install dtb files as 0644 in Makefile.dtbinst (git-fixes).
- kbuild: avoid build error when single DTB is turned into composite DTB (git-fixes).
- kbuild: doc: Update default INSTALL_MOD_DIR from extra to updates (git-fixes).
- kconfig: doc: fix a typo in the note about 'imply' (git-fixes).
- kconfig: fix comparison to constant symbols, 'm', 'n' (git-fixes).
- kconfig: gconf: give a proper initial state to the Save button (stable-fixes).
- kconfig: remove wrong expr_trans_bool() (stable-fixes).
- kcov: do not lose track of remote references during softirqs (git-fixes).
- kernel-binary: vdso: Own module_dir
- kernel-doc: fix struct_group_tagged() parsing (git-fixes).
- kheaders: explicitly define file modes for archived headers (stable-fixes).
- knfsd: LOOKUP can return an illegal error value (git-fixes).
- kobject_uevent: Fix OOB access within zap_modalias_env() (git-fixes).
- kprobe/ftrace: bail out if ftrace was killed (git-fixes).
- kprobe/ftrace: fix build error due to bad function definition (git-fixes).
- kunit: Fix checksum tests on big endian CPUs (git-fixed).
- leds: flash: leds-qcom-flash: Test the correct variable in init (git-fixes).
- leds: mt6360: Fix memory leak in mt6360_init_isnk_properties() (git-fixes).
- leds: ss4200: Convert PCIBIOS_* return codes to errnos (git-fixes).
- leds: trigger: Unregister sysfs attributes before calling deactivate() (git-fixes).
- leds: triggers: Flush pending brightness before activating trigger (git-fixes).
- lib: objagg: Fix general protection fault (git-fixes).
- lib: objagg: Fix spelling (git-fixes).
- lib: test_objagg: Fix spelling (git-fixes).
- libceph: fix race between delayed_work() and ceph_monc_stop() (bsc#1228192).
- mISDN: Fix a use after free in hfcmulti_tx() (git-fixes).
- mISDN: fix MISDN_TIME_STAMP handling (git-fixes).
- mac802154: fix time calculation in ieee802154_configure_durations() (git-fixes).
- mailbox: mtk-cmdq: Move devm_mbox_controller_register() after devm_pm_runtime_enable() (git-fixes).
- media: dvb-frontends: tda10048: Fix integer overflow (stable-fixes).
- media: dvb-frontends: tda18271c2dd: Remove casting during div (stable-fixes).
- media: dvb-usb: Fix unexpected infinite loop in dvb_usb_read_remote_control() (git-fixes).
- media: dvb-usb: dib0700_devices: Add missing release_firmware() (stable-fixes).
- media: dvb: as102-fe: Fix as10x_register_addr packing (stable-fixes).
- media: dvbdev: Initialize sbuf (stable-fixes).
- media: dw2102: Do not translate i2c read into write (stable-fixes).
- media: dw2102: fix a potential buffer overflow (git-fixes).
- media: i2c: Fix imx412 exposure control (git-fixes).
- media: imon: Fix race getting ictx->lock (git-fixes).
- media: imx-jpeg: Drop initial source change event if capture has been setup (git-fixes).
- media: imx-jpeg: Remove some redundant error logs (git-fixes).
- media: imx-pxp: Fix ERR_PTR dereference in pxp_probe() (git-fixes).
- media: lgdt3306a: Add a check against null-pointer-def (stable-fixes).
- media: mxl5xx: Move xpt structures off stack (stable-fixes).
- media: pci: ivtv: Add check for DMA map result (git-fixes).
- media: radio-shark2: Avoid led_names truncations (git-fixes).
- media: rcar-vin: Fix YUYV8_1X16 handling for CSI-2 (git-fixes).
- media: renesas: vsp1: Fix _irqsave and _irq mix (git-fixes).
- media: renesas: vsp1: Store RPF partition configuration per RPF instance (git-fixes).
- media: s2255: Use refcount_t instead of atomic_t for num_channels (stable-fixes).
- media: uvcvideo: Fix integer overflow calculating timestamp (git-fixes).
- media: uvcvideo: Override default flags (git-fixes).
- media: v4l2-core: hold videodev_lock until dev reg, finishes (stable-fixes).
- media: v4l: async: Fix NULL pointer dereference in adding ancillary links (git-fixes).
- media: v4l: subdev: Fix typo in documentation (git-fixes).
- media: venus: fix use after free in vdec_close (git-fixes).
- media: venus: flush all buffers in output plane streamoff (git-fixes).
- mei: demote client disconnect warning on suspend to debug (stable-fixes).
- mei: me: release irq in mei_me_pci_resume error path (git-fixes).
- mfd: omap-usb-tll: Use struct_size to allocate tll (git-fixes).
- mfd: pm8008: Fix regmap irq chip initialisation (git-fixes).
- misc: fastrpc: Avoid updating PD type for capability request (git-fixes).
- misc: fastrpc: Copy the complete capability structure to user (git-fixes).
- misc: fastrpc: Fix DSP capabilities request (git-fixes).
- misc: fastrpc: Fix memory leak in audio daemon attach operation (git-fixes).
- misc: fastrpc: Fix ownership reassignment of remote heap (git-fixes).
- misc: fastrpc: Restrict untrusted app to attach to privileged PD (git-fixes).
- misc: microchip: pci1xxxx: Fix a memory leak in the error handling of gp_aux_bus_probe() (git-fixes).
- misc: microchip: pci1xxxx: fix double free in the error handling of gp_aux_bus_probe() (git-fixes).
- mmc: core: Add mmc_gpiod_set_cd_config() function (stable-fixes).
- mmc: core: Do not force a retune before RPMB switch (stable-fixes).
- mmc: sdhci-acpi: Add quirk to enable pull-up on the card-detect GPIO on Asus T100TA (git-fixes).
- mmc: sdhci-acpi: Disable write protect detection on Toshiba WT10-A (stable-fixes).
- mmc: sdhci-acpi: Fix Lenovo Yoga Tablet 2 Pro 1380 sdcard slot not working (stable-fixes).
- mmc: sdhci-acpi: Sort DMI quirks alphabetically (stable-fixes).
- mmc: sdhci-brcmstb: check R1_STATUS for erase/trim/discard (git-fixes).
- mmc: sdhci-pci: Convert PCIBIOS_* return codes to errnos (git-fixes).
- mmc: sdhci: Add support for 'Tuning Error' interrupts (stable-fixes).
- mmc: sdhci: Do not invert write-protect twice (git-fixes).
- mmc: sdhci: Do not lock spinlock around mmc_gpio_get_ro() (git-fixes).
- module: do not ignore sysfs_create_link() failures (git-fixes).
- mt76: connac: move more mt7921/mt7915 mac shared code in connac lib (bsc#1227149).
- mt76: mt7996: rely on mt76_sta_stats in mt76_wcid (bsc#1227149).
- mtd: partitions: redboot: Added conversion of operands to a larger type (stable-fixes).
- mtd: rawnand: Bypass a couple of sanity checks during NAND identification (git-fixes).
- mtd: rawnand: Ensure ECC configuration is propagated to upper layers (git-fixes).
- mtd: rawnand: Fix the nand_read_data_op() early check (git-fixes).
- mtd: rawnand: rockchip: ensure NVDDR timings are rejected (git-fixes).
- net/dcb: check for detached device before executing callbacks (bsc#1215587).
- net/mlx5: Fix MTMP register capability offset in MCAM register (git-fixes).
- net: can: j1939: Initialize unused data in j1939_send_one() (git-fixes).
- net: can: j1939: enhanced error handling for tightly received RTS messages in xtp_rx_rts_session_new (git-fixes).
- net: can: j1939: recover socket queue on CAN bus error during BAM transmission (git-fixes).
- net: ena: Fix redundant device NUMA node override (jsc#PED-8688).
- net: ethernet: mtk_wed: introduce mtk_wed_buf structure (bsc#1227149).
- net: ethernet: mtk_wed: rename mtk_rxbm_desc in mtk_wed_bm_desc (bsc#1227149).
- net: fill in MODULE_DESCRIPTION()s in kuba@'s modules (bsc#1227149).
- net: hns3: Remove io_stop_wc() calls after __iowrite64_copy() (bsc#1226502)
- net: lan743x: Support WOL at both the PHY and MAC appropriately (git-fixes).
- net: lan743x: disable WOL upon resume to restore full data path operation (git-fixes).
- net: mac802154: Fix racy device stats updates by DEV_STATS_INC() and DEV_STATS_ADD() (stable-fixes).
- net: mana: Enable MANA driver on ARM64 with 4K page size (jsc#PED-8491).
- net: mana: Fix possible double free in error handling path (git-fixes).
- net: mana: Fix the extra HZ in mana_hwc_send_request (git-fixes).
- net: phy: Micrel KSZ8061: fix errata solution not taking effect problem (git-fixes).
- net: phy: micrel: add Microchip KSZ 9477 to the device table (git-fixes).
- net: phy: micrel: fix KSZ9477 PHY issues after suspend/resume (git-fixes).
- net: phy: microchip: lan87xx: reinit PHY after cable test (git-fixes).
- net: phy: mxl-gpy: Remove interrupt mask clearing from config_init (git-fixes).
- net: phy: phy_device: Fix PHY LED blinking code comment (git-fixes).
- net: usb: ax88179_178a: improve link status logs (git-fixes).
- net: usb: ax88179_178a: improve reset check (git-fixes).
- net: usb: qmi_wwan: add Telit FN912 compositions (stable-fixes).
- net: usb: qmi_wwan: add Telit FN920C04 compositions (git-fixes).
- net: usb: rtl8150 fix unintiatilzed variables in rtl8150_get_link_ksettings (git-fixes).
- nfc/nci: Add the inconsistency check between the input data length and count (stable-fixes).
- nfs: Avoid flushing many pages with NFS_FILE_SYNC (bsc#1218442).
- nfs: Block on write congestion (bsc#1218442).
- nfs: Bump default write congestion size (bsc#1218442).
- nfs: Drop pointless check from nfs_commit_release_pages() (bsc#1218442).
- nfs: Fix up kabi after adding write_congestion_wait (bsc#1218442).
- nfs: Handle error of rpc_proc_register() in nfs_net_init() (git-fixes).
- nfs: Properly initialize server->writeback (bsc#1218442).
- nfs: drop the incorrect assertion in nfs_swap_rw() (git-fixes).
- nfs: fix undefined behavior in nfs_block_bits() (git-fixes).
- nfs: keep server info for remounts (git-fixes).
- nfsd: hold a lighter-weight client reference over CB_RECALL_ANY (git-fixes).
- nfsd: optimise recalculate_deny_mode() for a common case (bsc#1217912).
- nilfs2: add missing check for inode numbers on directory entries (stable-fixes).
- nilfs2: avoid undefined behavior in nilfs_cnt32_ge macro (git-fixes).
- nilfs2: convert persistent object allocator to use kmap_local (git-fixes).
- nilfs2: fix incorrect inode allocation from reserved inodes (git-fixes).
- nilfs2: fix inode number range checks (stable-fixes).
- nilfs2: fix nilfs_empty_dir() misjudgment and long loop on I/O errors (git-fixes).
- nilfs2: fix potential hang in nilfs_detach_log_writer() (git-fixes).
- nilfs2: return the mapped address from nilfs_get_page() (stable-fixes).
- nouveau: add an ioctl to report vram usage (stable-fixes).
- nouveau: add an ioctl to return vram bar size (stable-fixes).
- nouveau: report byte usage in VRAM usage (git-fixes).
- nvme-fabrics: short-circuit reconnect retries (bsc#1186716).
- nvme-tcp: Export the nvme_tcp_wq to sysfs (bsc#1224049).
- nvme/tcp: Add wq_unbound modparam for nvme_tcp_wq (bsc#1224049).
- nvme: cancel pending I/O if nvme controller is in terminal state (bsc#1226503).
- nvme: do not retry authentication failures (bsc#1186716).
- nvme: find numa distance only if controller has valid numa id (git-fixes).
- nvme: fix nvme_pr_* status code parsing (git-fixes).
- nvme: return kernel error codes for admin queue connect (bsc#1186716).
- nvmet-auth: replace pr_debug() with pr_err() to report an error (git-fixes).
- nvmet-auth: return the error code to the nvmet_auth_host_hash() callers (git-fixes).
- nvmet-passthru: propagate status from id override functions (git-fixes).
- nvmet-tcp: fix possible memory leak when tearing down a controller (git-fixes).
- nvmet: fix nvme status code when namespace is disabled (git-fixes).
- nvmet: lock config semaphore when accessing DH-HMAC-CHAP key (bsc#1186716).
- nvmet: prevent sprintf() overflow in nvmet_subsys_nsid_exists() (git-fixes).
- nvmet: return DHCHAP status codes from nvmet_setup_auth() (bsc#1186716).
- ocfs2: adjust enabling place for la window (bsc#1219224).
- ocfs2: fix DIO failure due to insufficient transaction credits (git-fixes).
- ocfs2: fix races between hole punching and AIO+DIO (git-fixes).
- ocfs2: fix sparse warnings (bsc#1219224).
- ocfs2: improve write IO performance when fragmentation is high (bsc#1219224).
- ocfs2: speed up chain-list searching (bsc#1219224).
- ocfs2: use coarse time for new created files (git-fixes).
- orangefs: fix out-of-bounds fsid access (git-fixes).
- pNFS/filelayout: fixup pNfs allocation modes (git-fixes).
- phy: cadence-torrent: Check return value on register read (git-fixes).
- pinctrl: core: fix possible memory leak when pinctrl_enable() fails (git-fixes).
- pinctrl: fix deadlock in create_pinctrl() when handling -EPROBE_DEFER (git-fixes).
- pinctrl: freescale: mxs: Fix refcount of child (git-fixes).
- pinctrl: qcom: spmi-gpio: drop broken pm8008 support (git-fixes).
- pinctrl: renesas: r8a779g0: FIX PWM suffixes (git-fixes).
- pinctrl: renesas: r8a779g0: Fix (H)SCIF1 suffixes (git-fixes).
- pinctrl: renesas: r8a779g0: Fix (H)SCIF3 suffixes (git-fixes).
- pinctrl: renesas: r8a779g0: Fix CANFD5 suffix (git-fixes).
- pinctrl: renesas: r8a779g0: Fix FXR_TXEN[AB] suffixes (git-fixes).
- pinctrl: renesas: r8a779g0: Fix IRQ suffixes (git-fixes).
- pinctrl: renesas: r8a779g0: Fix TCLK suffixes (git-fixes).
- pinctrl: renesas: r8a779g0: Fix TPU suffixes (git-fixes).
- pinctrl: rockchip: fix pinmux bits for RK3328 GPIO2-B pins (git-fixes).
- pinctrl: rockchip: fix pinmux bits for RK3328 GPIO3-B pins (git-fixes).
- pinctrl: rockchip: fix pinmux reset in rockchip_pmx_set (git-fixes).
- pinctrl: rockchip: update rk3308 iomux routes (git-fixes).
- pinctrl: rockchip: use dedicated pinctrl type for RK3328 (git-fixes).
- pinctrl: single: fix possible memory leak when pinctrl_enable() fails (git-fixes).
- pinctrl: ti: ti-iodelay: fix possible memory leak when pinctrl_enable() fails (git-fixes).
- platform/chrome: cros_ec_debugfs: fix wrong EC message version (git-fixes).
- platform/x86/intel/tpmi: Handle error from tpmi_process_info() (stable-fixes).
- platform/x86: ISST: Add Grand Ridge to HPM CPU list (stable-fixes).
- platform/x86: dell-smbios: Fix wrong token data in sysfs (git-fixes).
- platform/x86: lg-laptop: Change ACPI device id (stable-fixes).
- platform/x86: lg-laptop: Remove LGEX0815 hotkey handling (stable-fixes).
- platform/x86: lg-laptop: Use ACPI device handle when evaluating WMAB/WMBB (stable-fixes).
- platform/x86: thinkpad_acpi: Take hotkey_mutex during hotkey_exit() (git-fixes).
- platform/x86: toshiba_acpi: Add quirk for buttons on Z830 (stable-fixes).
- platform/x86: toshiba_acpi: Fix array out-of-bounds access (git-fixes).
- platform/x86: toshiba_acpi: Fix quickstart quirk handling (git-fixes).
- platform/x86: touchscreen_dmi: Add info for GlobalSpace SolT IVW 11.6' tablet (stable-fixes).
- platform/x86: touchscreen_dmi: Add info for the EZpad 6s Pro (stable-fixes).
- platform/x86: wireless-hotkey: Add support for LG Airplane Button (stable-fixes).
- power: supply: ab8500: Fix error handling when calling iio_read_channel_processed() (git-fixes).
- power: supply: cros_usbpd: provide ID table for avoiding fallback match (stable-fixes).
- power: supply: ingenic: Fix some error handling paths in ingenic_battery_get_property() (git-fixes).
- powerpc/64s/radix/kfence: map __kfence_pool at page granularity (bsc#1223570 ltc#205770).
- powerpc/prom: Add CPU info to hardware description string later (bsc#1215199).
- powerpc/pseries: Fix scv instruction crash with kexec (bsc#1194869).
- powerpc/rtas: Prevent Spectre v1 gadget construction in sys_rtas() (bsc#1227487).
- pwm: sti: Prepare removing pwm_chip from driver data (stable-fixes).
- pwm: sti: Simplify probe function using devm functions (git-fixes).
- pwm: stm32: Always do lazy disabling (git-fixes).
- regmap-i2c: Subtract reg size from max_write (stable-fixes).
- regulator: bd71815: fix ramp values (git-fixes).
- regulator: core: Fix modpost error 'regulator_get_regmap' undefined (git-fixes).
- regulator: irq_helpers: duplicate IRQ name (stable-fixes).
- regulator: vqmmc-ipq4019: fix module autoloading (stable-fixes).
- remoteproc: imx_rproc: Fix refcount mistake in imx_rproc_addr_init (git-fixes).
- remoteproc: imx_rproc: Skip over memory region when node value is NULL (git-fixes).
- remoteproc: k3-r5: Fix IPC-only mode detection (git-fixes).
- remoteproc: stm32_rproc: Fix mailbox interrupts queuing (git-fixes).
- rpcrdma: fix handling for RDMA_CM_EVENT_DEVICE_REMOVAL (git-fixes).
- rtc: abx80x: Fix return value of nvmem callback on read (git-fixes).
- rtc: cmos: Fix return value of nvmem callbacks (git-fixes).
- rtc: interface: Add RTC offset to alarm after fix-up (git-fixes).
- rtc: isl1208: Fix return value of nvmem callbacks (git-fixes).
- s390/cpacf: Make use of invalid opcode produce a link error (git-fixes bsc#1227072).
- s390: Implement __iowrite32_copy() (bsc#1226502)
- s390: Stop using weak symbols for __iowrite64_copy() (bsc#1226502)
- saa7134: Unchecked i2c_transfer function result fixed (git-fixes).
- sched/core: Fix incorrect initialization of the 'burst' parameter in cpu_max_write() (bsc#1226791).
- selftests/bpf: test case for callback_depth states pruning logic (bsc#1225903).
- selftests/bpf: test if state loops are detected in a tricky case (bsc#1225903).
- selftests/bpf: test widening for iterating callbacks (bsc#1225903).
- selftests/bpf: tests for iterating callbacks (bsc#1225903).
- selftests/bpf: tests with delayed read/precision makrs in loop body (bsc#1225903).
- selftests/bpf: track string payload offset as scalar in strobemeta (bsc#1225903).
- selftests/bpf: track tcp payload offset as scalar in xdp_synproxy (bsc#1225903).
- selftests/mm: compaction_test: fix incorrect write of zero to nr_hugepages (git-fixes).
- selftests/mm: fix build warnings on ppc64 (stable-fixes).
- selftests/sigaltstack: Fix ppc64 GCC build (git-fixes).
- selftests: fix OOM in msg_zerocopy selftest (git-fixes).
- selftests: make order checking verbose in msg_zerocopy selftest (git-fixes).
- selftests: mptcp: add ms units for tc-netem delay (stable-fixes).
- selftests: sud_test: return correct emulated syscall value on RISC-V (stable-fixes).
- serial: bcm63xx-uart: fix tx after conversion to uart_port_tx_limited() (git-fixes).
- serial: core: introduce uart_port_tx_limited_flags() (git-fixes).
- serial: exar: adding missing CTI and Exar PCI ids (stable-fixes).
- serial: imx: Introduce timeout when waiting on transmitter empty (stable-fixes).
- serial: imx: Raise TX trigger level to 8 (stable-fixes).
- smb3: allow controlling length of time directory entries are cached with dir leases (git-fixes, bsc#1225172).
- smb3: allow controlling maximum number of cached directories (git-fixes, bsc#1225172).
- smb3: do not start laundromat thread when dir leases disabled (git-fixes, bsc#1225172).
- smb: client: do not start laundromat thread on nohandlecache (git-fixes, bsc#1225172).
- smb: client: make laundromat a delayed worker (git-fixes, bsc#1225172).
- smb: client: prevent new fids from being removed by laundromat (git-fixes, bsc#1225172).
- soc: qcom: pdr: fix parsing of domains lists (git-fixes).
- soc: qcom: pdr: protect locator_addr with the main mutex (git-fixes).
- soc: qcom: pmic_glink: Handle the return value of pmic_glink_init (git-fixes).
- soc: qcom: rpmh-rsc: Ensure irqs are not disabled by rpmh_rsc_send_data() callers (git-fixes).
- soc: ti: wkup_m3_ipc: Send NULL dummy message instead of pointer message (stable-fixes).
- soc: xilinx: rename cpu_number1 to dummy_cpu_number (git-fixes).
- soundwire: cadence: fix invalid PDI offset (stable-fixes).
- spi: atmel-quadspi: Add missing check for clk_prepare (git-fixes).
- spi: cadence: Ensure data lines set to low during dummy-cycle period (stable-fixes).
- spi: imx: Do not expect DMA for i.MX{25,35,50,51,53} cspi devices (stable-fixes).
- spi: microchip-core: defer asserting chip select until just before write to TX FIFO (git-fixes).
- spi: microchip-core: ensure TX and RX FIFOs are empty at start of a transfer (git-fixes).
- spi: microchip-core: fix the issues in the isr (git-fixes).
- spi: microchip-core: only disable SPI controller when register value change requires it (git-fixes).
- spi: mux: set ctlr->bits_per_word_mask (stable-fixes).
- spi: spi-microchip-core: Fix the number of chip selects supported (git-fixes).
- spi: spidev: add correct compatible for Rohm BH2228FV (git-fixes).
- spi: stm32: qspi: Clamp stm32_qspi_get_mode() output to CCR_BUSWIDTH_4 (git-fixes).
- spi: stm32: qspi: Fix dual flash mode sanity test in stm32_qspi_setup() (git-fixes).
- ssb: Fix potential NULL pointer dereference in ssb_device_uevent() (stable-fixes).
- struct acpi_ec kABI workaround (git-fixes).
- sunrpc: fix NFSACL RPC retry on soft mount (git-fixes).
- tcp: Dump bound-only sockets in inet_diag (bsc#1204562).
- thermal/drivers/mediatek/lvts_thermal: Check NULL ptr on lvts_data (stable-fixes).
- thermal/drivers/mediatek/lvts_thermal: Return error in case of invalid efuse data (git-fixes).
- thunderbolt: debugfs: Fix margin debugfs node creation condition (git-fixes).
- tools/memory-model: Fix bug in lock.cat (git-fixes).
- tools/power turbostat: Remember global max_die_id (stable-fixes).
- tools/power/cpupower: Fix Pstate frequency reporting on AMD Family 1Ah CPUs (stable-fixes).
- tools: ynl: do not leak mcast_groups on init error (git-fixes).
- tools: ynl: fix handling of multiple mcast groups (git-fixes).
- tools: ynl: make sure we always pass yarg to mnl_cb_run (git-fixes).
- tpm_tis: Do *not* flush uninitialized work (git-fixes).
- tracefs: Add missing lockdown check to tracefs_create_dir() (git-fixes).
- tracing/net_sched: NULL pointer dereference in perf_trace_qdisc_reset() (git-fixes).
- tracing: Build event generation tests only as modules (git-fixes).
- tty: mcf: MCF54418 has 10 UARTS (git-fixes).
- tty: n_tty: Fix buffer offsets when lookahead is used (git-fixes).
- usb-storage: alauda: Check whether the media is initialized (git-fixes).
- usb: atm: cxacru: fix endpoint checking in cxacru_bind() (git-fixes).
- usb: dwc3: core: Add DWC31 version 2.00a controller (stable-fixes).
- usb: dwc3: core: Workaround for CSR read timeout (stable-fixes).
- usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to avoid deadlock (git-fixes).
- usb: dwc3: pci: Do not set 'linux,phy_charger_detect' property on Lenovo Yoga Tab2 1380 (stable-fixes).
- usb: dwc3: pci: add support for the Intel Panther Lake (stable-fixes).
- usb: gadget: aspeed_udc: fix device address configuration (git-fixes).
- usb: gadget: configfs: Prevent OOB read/write in usb_string_copy() (stable-fixes).
- usb: gadget: function: Remove usage of the deprecated ida_simple_xx() API (stable-fixes).
- usb: gadget: printer: SS+ support (stable-fixes).
- usb: gadget: printer: fix races against disable (git-fixes).
- usb: gadget: uvc: configfs: ensure guid to be valid before set (stable-fixes).
- usb: misc: uss720: check for incompatible versions of the Belkin F5U002 (stable-fixes).
- usb: musb: da8xx: fix a resource leak in probe() (git-fixes).
- usb: typec: tcpm: Ignore received Hard Reset in TOGGLING state (git-fixes).
- usb: typec: tcpm: fix use-after-free case in tcpm_register_source_caps (git-fixes).
- usb: typec: ucsi: Ack also failed Get Error commands (git-fixes).
- usb: typec: ucsi: Never send a lone connector change ack (stable-fixes).
- usb: typec: ucsi: glink: fix child node release in probe function (git-fixes).
- usb: typec: ucsi_glink: drop special handling for CCI_BUSY (stable-fixes).
- usb: ucsi: stm32: fix command completion handling (git-fixes).
- usb: xhci: prevent potential failure in handle_tx_event() for Transfer events without TRB (stable-fixes).
- virtio_net: avoid data-races on dev->stats fields (git-fixes).
- virtio_net: checksum offloading handling fix (git-fixes).
- vmlinux.lds.h: catch .bss..L* sections into BSS') (git-fixes).
- watchdog: rzg2l_wdt: Check return status of pm_runtime_put() (git-fixes).
- watchdog: rzg2l_wdt: Use pm_runtime_resume_and_get() (git-fixes).
- watchdog: rzn1: Convert comma to semicolon (git-fixes).
- wifi: add HAS_IOPORT dependencies (bsc#1227149).
- wifi: ar5523: Remove unnecessary (void*) conversions (bsc#1227149).
- wifi: ath10/11/12k: Use alloc_ordered_workqueue() to create ordered workqueues (bsc#1227149).
- wifi: ath10k: Annotate struct ath10k_ce_ring with __counted_by (bsc#1227149).
- wifi: ath10k: Convert to platform remove callback returning void (bsc#1227149).
- wifi: ath10k: Drop checks that are always false (bsc#1227149).
- wifi: ath10k: Drop cleaning of driver data from probe error path and remove (bsc#1227149).
- wifi: ath10k: Fix a few spelling errors (bsc#1227149).
- wifi: ath10k: Fix enum ath10k_fw_crash_dump_type kernel-doc (bsc#1227149).
- wifi: ath10k: Fix htt_data_tx_completion kernel-doc warning (bsc#1227149).
- wifi: ath10k: Remove unnecessary (void*) conversions (bsc#1227149).
- wifi: ath10k: Remove unused struct ath10k_htc_frame (bsc#1227149).
- wifi: ath10k: Update Qualcomm Innovation Center, Inc. copyrights (bsc#1227149).
- wifi: ath10k: Use DECLARE_FLEX_ARRAY() for ath10k_htc_record (bsc#1227149).
- wifi: ath10k: Use list_count_nodes() (bsc#1227149).
- wifi: ath10k: add missing wmi_10_4_feature_mask documentation (bsc#1227149).
- wifi: ath10k: add support to allow broadcast action frame RX (bsc#1227149).
- wifi: ath10k: consistently use kstrtoX_from_user() functions (bsc#1227149).
- wifi: ath10k: correctly document enum wmi_tlv_tx_pause_id (bsc#1227149).
- wifi: ath10k: drop HTT_DATA_TX_STATUS_DOWNLOAD_FAIL (bsc#1227149).
- wifi: ath10k: fix QCOM_RPROC_COMMON dependency (git-fixes).
- wifi: ath10k: fix Wvoid-pointer-to-enum-cast warning (bsc#1227149).
- wifi: ath10k: fix htt_q_state_conf & htt_q_state kernel-doc (bsc#1227149).
- wifi: ath10k: improve structure padding (bsc#1227149).
- wifi: ath10k: indicate to mac80211 scan complete with aborted flag for ATH10K_SCAN_STARTING state (bsc#1227149).
- wifi: ath10k: remove ath10k_htc_record::pauload[] (bsc#1227149).
- wifi: ath10k: remove duplicate memset() in 10.4 TDLS peer update (bsc#1227149).
- wifi: ath10k: remove struct wmi_pdev_chanlist_update_event (bsc#1227149).
- wifi: ath10k: remove unused template structs (bsc#1227149).
- wifi: ath10k: replace ENOTSUPP with EOPNOTSUPP (bsc#1227149).
- wifi: ath10k: replace deprecated strncpy with memcpy (bsc#1227149).
- wifi: ath10k: simplify __ath10k_htt_tx_txq_recalc() (bsc#1227149).
- wifi: ath10k: simplify ath10k_peer_create() (bsc#1227149).
- wifi: ath10k: use flexible array in struct wmi_host_mem_chunks (bsc#1227149).
- wifi: ath10k: use flexible array in struct wmi_tdls_peer_capabilities (bsc#1227149).
- wifi: ath10k: use flexible arrays for WMI start scan TLVs (bsc#1227149).
- wifi: ath11k: Add HTT stats for PHY reset case (bsc#1227149).
- wifi: ath11k: Add coldboot calibration support for QCN9074 (bsc#1227149).
- wifi: ath11k: Allow ath11k to boot without caldata in ftm mode (bsc#1227149).
- wifi: ath11k: Consistently use ath11k_vif_to_arvif() (bsc#1227149).
- wifi: ath11k: Consolidate WMI peer flags (bsc#1227149).
- wifi: ath11k: Convert to platform remove callback returning void (bsc#1227149).
- wifi: ath11k: Do not directly use scan_flags in struct scan_req_params (bsc#1227149).
- wifi: ath11k: EMA beacon support (bsc#1227149).
- wifi: ath11k: Fix a few spelling errors (bsc#1227149).
- wifi: ath11k: Fix ath11k_htc_record flexible record (bsc#1227149).
- wifi: ath11k: Introduce and use ath11k_sta_to_arsta() (bsc#1227149).
- wifi: ath11k: MBSSID beacon support (bsc#1227149).
- wifi: ath11k: MBSSID configuration during vdev create/start (bsc#1227149).
- wifi: ath11k: MBSSID parameter configuration in AP mode (bsc#1227149).
- wifi: ath11k: Really consistently use ath11k_vif_to_arvif() (bsc#1227149).
- wifi: ath11k: Relocate the func ath11k_mac_bitrate_mask_num_ht_rates() and change hweight16 to hweight8 (bsc#1227149).
- wifi: ath11k: Remove ath11k_base::bd_api (bsc#1227149).
- wifi: ath11k: Remove cal_done check during probe (bsc#1227149).
- wifi: ath11k: Remove obsolete struct wmi_peer_flags_map *peer_flags (bsc#1227149).
- wifi: ath11k: Remove scan_flags union from struct scan_req_params (bsc#1227149).
- wifi: ath11k: Remove struct ath11k::ops (bsc#1227149).
- wifi: ath11k: Remove unneeded semicolon (bsc#1227149).
- wifi: ath11k: Remove unused declarations (bsc#1227149).
- wifi: ath11k: Remove unused struct ath11k_htc_frame (bsc#1227149).
- wifi: ath11k: Send HT fixed rate in WMI peer fixed param (bsc#1227149).
- wifi: ath11k: Split coldboot calibration hw_param (bsc#1227149).
- wifi: ath11k: Update Qualcomm Innovation Center, Inc. copyrights (bsc#1227149).
- wifi: ath11k: Use device_get_match_data() (bsc#1227149).
- wifi: ath11k: Use list_count_nodes() (bsc#1227149).
- wifi: ath11k: add WMI event debug messages (bsc#1227149).
- wifi: ath11k: add WMI_TLV_SERVICE_EXT_TPC_REG_SUPPORT service bit (bsc#1227149).
- wifi: ath11k: add chip id board name while searching board-2.bin for WCN6855 (bsc#1227149).
- wifi: ath11k: add firmware-2.bin support (bsc#1227149).
- wifi: ath11k: add handler for WMI_VDEV_SET_TPC_POWER_CMDID (bsc#1227149).
- wifi: ath11k: add parse of transmit power envelope element (bsc#1227149).
- wifi: ath11k: add parsing of phy bitmap for reg rules (bsc#1227149).
- wifi: ath11k: add support for QCA2066 (bsc#1227149).
- wifi: ath11k: add support to select 6 GHz regulatory type (bsc#1227149).
- wifi: ath11k: ath11k_debugfs_register(): fix format-truncation warning (bsc#1227149).
- wifi: ath11k: avoid forward declaration of ath11k_mac_start_vdev_delay() (bsc#1227149).
- wifi: ath11k: call ath11k_mac_fils_discovery() without condition (bsc#1227149).
- wifi: ath11k: constify MHI channel and controller configs (bsc#1227149).
- wifi: ath11k: debug: add ATH11K_DBG_CE (bsc#1227149).
- wifi: ath11k: debug: remove unused ATH11K_DBG_ANY (bsc#1227149).
- wifi: ath11k: debug: use all upper case in ATH11k_DBG_HAL (bsc#1227149).
- wifi: ath11k: do not use %pK (bsc#1227149).
- wifi: ath11k: document HAL_RX_BUF_RBM_SW4_BM (bsc#1227149).
- wifi: ath11k: dp: cleanup debug message (bsc#1227149).
- wifi: ath11k: driver settings for MBSSID and EMA (bsc#1227149).
- wifi: ath11k: drop NULL pointer check in ath11k_update_per_peer_tx_stats() (bsc#1227149).
- wifi: ath11k: drop redundant check in ath11k_dp_rx_mon_dest_process() (bsc#1227149).
- wifi: ath11k: enable 36 bit mask for stream DMA (bsc#1227149).
- wifi: ath11k: factory test mode support (bsc#1227149).
- wifi: ath11k: fill parameters for vdev set tpc power WMI command (bsc#1227149).
- wifi: ath11k: fix CAC running state during virtual interface start (bsc#1227149).
- wifi: ath11k: fix IOMMU errors on buffer rings (bsc#1227149).
- wifi: ath11k: fix RCU documentation in ath11k_mac_op_ipv6_changed() (git-fixes).
- wifi: ath11k: fix WCN6750 firmware crash caused by 17 num_vdevs (bsc#1227149).
- wifi: ath11k: fix Wvoid-pointer-to-enum-cast warning (bsc#1227149).
- wifi: ath11k: fix a possible dead lock caused by ab->base_lock (bsc#1227149).
- wifi: ath11k: fix ath11k_mac_op_remain_on_channel() stack usage (bsc#1227149).
- wifi: ath11k: fix connection failure due to unexpected peer delete (bsc#1227149).
- wifi: ath11k: fix tid bitmap is 0 in peer rx mu stats (bsc#1227149).
- wifi: ath11k: fix wrong definition of CE ring's base address (git-fixes).
- wifi: ath11k: fix wrong handling of CCMP256 and GCMP ciphers (git-fixes).
- wifi: ath11k: hal: cleanup debug message (bsc#1227149).
- wifi: ath11k: htc: cleanup debug messages (bsc#1227149).
- wifi: ath11k: initialize eirp_power before use (bsc#1227149).
- wifi: ath11k: mac: fix struct ieee80211_sband_iftype_data handling (bsc#1227149).
- wifi: ath11k: mhi: add a warning message for MHI_CB_EE_RDDM crash (bsc#1227149).
- wifi: ath11k: move pci.ops registration ahead (bsc#1227149).
- wifi: ath11k: move power type check to ASSOC stage when connecting to 6 GHz AP (bsc#1227149).
- wifi: ath11k: move references from rsvd2 to info fields (bsc#1227149).
- wifi: ath11k: pci: cleanup debug logging (bsc#1227149).
- wifi: ath11k: print debug level in debug messages (bsc#1227149).
- wifi: ath11k: provide address list if chip supports 2 stations (bsc#1227149).
- wifi: ath11k: qmi: refactor ath11k_qmi_m3_load() (bsc#1227149).
- wifi: ath11k: refactor ath11k_wmi_tlv_parse_alloc() (bsc#1227149).
- wifi: ath11k: refactor setting country code logic (stable-fixes).
- wifi: ath11k: refactor vif parameter configurations (bsc#1227149).
- wifi: ath11k: rely on mac80211 debugfs handling for vif (bsc#1227149).
- wifi: ath11k: remove ath11k_htc_record::pauload[] (bsc#1227149).
- wifi: ath11k: remove invalid peer create logic (bsc#1227149).
- wifi: ath11k: remove manual mask names from debug messages (bsc#1227149).
- wifi: ath11k: remove unnecessary (void*) conversions (bsc#1227149).
- wifi: ath11k: remove unsupported event handlers (bsc#1227149).
- wifi: ath11k: remove unused function ath11k_tm_event_wmi() (bsc#1227149).
- wifi: ath11k: remove unused members of 'struct ath11k_base' (bsc#1227149).
- wifi: ath11k: remove unused scan_events from struct scan_req_params (bsc#1227149).
- wifi: ath11k: rename MBSSID fields in wmi_vdev_up_cmd (bsc#1227149).
- wifi: ath11k: rename ath11k_start_vdev_delay() (bsc#1227149).
- wifi: ath11k: rename the sc naming convention to ab (bsc#1227149).
- wifi: ath11k: rename the wmi_sc naming convention to wmi_ab (bsc#1227149).
- wifi: ath11k: replace ENOTSUPP with EOPNOTSUPP (bsc#1227149).
- wifi: ath11k: restore country code during resume (git-fixes).
- wifi: ath11k: save max transmit power in vdev start response event from firmware (bsc#1227149).
- wifi: ath11k: save power spectral density(PSD) of regulatory rule (bsc#1227149).
- wifi: ath11k: simplify ath11k_mac_validate_vht_he_fixed_rate_settings() (bsc#1227149).
- wifi: ath11k: simplify the code with module_platform_driver (bsc#1227149).
- wifi: ath11k: store cur_regulatory_info for each radio (bsc#1227149).
- wifi: ath11k: support 2 station interfaces (bsc#1227149).
- wifi: ath11k: update proper pdev/vdev id for testmode command (bsc#1227149).
- wifi: ath11k: update regulatory rules when connect to AP on 6 GHz band for station (bsc#1227149).
- wifi: ath11k: update regulatory rules when interface added (bsc#1227149).
- wifi: ath11k: use RCU when accessing struct inet6_dev::ac_list (bsc#1227149).
- wifi: ath11k: use WMI_VDEV_SET_TPC_POWER_CMDID when EXT_TPC_REG_SUPPORT for 6 GHz (bsc#1227149).
- wifi: ath11k: use kstrtoul_from_user() where appropriate (bsc#1227149).
- wifi: ath11k: use select for CRYPTO_MICHAEL_MIC (bsc#1227149).
- wifi: ath11k: wmi: add unified command debug messages (bsc#1227149).
- wifi: ath11k: wmi: cleanup error handling in ath11k_wmi_send_init_country_cmd() (bsc#1227149).
- wifi: ath11k: wmi: use common error handling style (bsc#1227149).
- wifi: ath11k: workaround too long expansion sparse warnings (bsc#1227149).
- wifi: ath12k: Add logic to write QRTR node id to scratch (bsc#1227149).
- wifi: ath12k: Add missing qmi_txn_cancel() calls (bsc#1227149).
- wifi: ath12k: Add support to parse new WMI event for 6 GHz regulatory (bsc#1227149).
- wifi: ath12k: Consistently use ath12k_vif_to_arvif() (bsc#1227149).
- wifi: ath12k: Consolidate WMI peer flags (bsc#1227149).
- wifi: ath12k: Correct 6 GHz frequency value in rx status (git-fixes).
- wifi: ath12k: Do not drop tx_status in failure case (git-fixes).
- wifi: ath12k: Do not use scan_flags from struct ath12k_wmi_scan_req_arg (bsc#1227149).
- wifi: ath12k: Enable Mesh support for QCN9274 (bsc#1227149).
- wifi: ath12k: Fix a few spelling errors (bsc#1227149).
- wifi: ath12k: Fix tx completion ring (WBM2SW) setup failure (git-fixes).
- wifi: ath12k: Fix uninitialized use of ret in ath12k_mac_allocate() (bsc#1227149).
- wifi: ath12k: Introduce and use ath12k_sta_to_arsta() (bsc#1227149).
- wifi: ath12k: Introduce the container for mac80211 hw (bsc#1227149).
- wifi: ath12k: Make QMI message rules const (bsc#1227149).
- wifi: ath12k: Optimize the mac80211 hw data access (bsc#1227149).
- wifi: ath12k: Read board id to support split-PHY QCN9274 (bsc#1227149).
- wifi: ath12k: Refactor the mac80211 hw access from link/radio (bsc#1227149).
- wifi: ath12k: Remove ath12k_base::bd_api (bsc#1227149).
- wifi: ath12k: Remove obsolete struct wmi_peer_flags_map *peer_flags (bsc#1227149).
- wifi: ath12k: Remove some dead code (bsc#1227149).
- wifi: ath12k: Remove struct ath12k::ops (bsc#1227149).
- wifi: ath12k: Remove unnecessary (void*) conversions (bsc#1227149).
- wifi: ath12k: Remove unnecessary struct qmi_txn initializers (bsc#1227149).
- wifi: ath12k: Remove unused declarations (bsc#1227149).
- wifi: ath12k: Remove unused scan_flags from struct ath12k_wmi_scan_req_arg (bsc#1227149).
- wifi: ath12k: Set default beacon mode to burst mode (bsc#1227149).
- wifi: ath12k: Use initializers for QMI message buffers (bsc#1227149).
- wifi: ath12k: Use msdu_end to check MCBC (bsc#1227149).
- wifi: ath12k: Use pdev_id rather than mac_id to get pdev (bsc#1227149).
- wifi: ath12k: WMI support to process EHT capabilities (bsc#1227149).
- wifi: ath12k: add 320 MHz bandwidth enums (bsc#1227149).
- wifi: ath12k: add CE and ext IRQ flag to indicate irq_handler (bsc#1227149).
- wifi: ath12k: add EHT PHY modes (bsc#1227149).
- wifi: ath12k: add MAC id support in WBM error path (bsc#1227149).
- wifi: ath12k: add MLO header in peer association (bsc#1227149).
- wifi: ath12k: add P2P IE in beacon template (bsc#1227149).
- wifi: ath12k: add QMI PHY capability learn support (bsc#1227149).
- wifi: ath12k: add WMI support for EHT peer (bsc#1227149).
- wifi: ath12k: add ath12k_qmi_free_resource() for recovery (bsc#1227149).
- wifi: ath12k: add fallback board name without variant while searching board-2.bin (bsc#1227149).
- wifi: ath12k: add firmware-2.bin support (bsc#1227149).
- wifi: ath12k: add handler for scan event WMI_SCAN_EVENT_DEQUEUED (bsc#1227149).
- wifi: ath12k: add keep backward compatibility of PHY mode to avoid firmware crash (bsc#1227149).
- wifi: ath12k: add msdu_end structure for WCN7850 (bsc#1227149).
- wifi: ath12k: add parsing of phy bitmap for reg rules (bsc#1227149).
- wifi: ath12k: add processing for TWT disable event (bsc#1227149).
- wifi: ath12k: add processing for TWT enable event (bsc#1227149).
- wifi: ath12k: add qmi_cnss_feature_bitmap field to hardware parameters (bsc#1227149).
- wifi: ath12k: add rcu lock for ath12k_wmi_p2p_noa_event() (bsc#1227149).
- wifi: ath12k: add read variant from SMBIOS for download board data (bsc#1227149).
- wifi: ath12k: add string type to search board data in board-2.bin for WCN7850 (bsc#1227149).
- wifi: ath12k: add support for BA1024 (bsc#1227149).
- wifi: ath12k: add support for collecting firmware log (bsc#1227149).
- wifi: ath12k: add support for hardware rfkill for WCN7850 (bsc#1227149).
- wifi: ath12k: add support for peer meta data version (bsc#1227149).
- wifi: ath12k: add support one MSI vector (bsc#1227149).
- wifi: ath12k: add support to search regdb data in board-2.bin for WCN7850 (bsc#1227149).
- wifi: ath12k: add wait operation for tx management packets for flush from mac80211 (bsc#1227149).
- wifi: ath12k: advertise P2P dev support for WCN7850 (bsc#1227149).
- wifi: ath12k: allow specific mgmt frame tx while vdev is not up (bsc#1227149).
- wifi: ath12k: ath12k_start_vdev_delay(): convert to use ar (bsc#1227149).
- wifi: ath12k: avoid deadlock by change ieee80211_queue_work for regd_update_work (bsc#1227149).
- wifi: ath12k: avoid duplicated vdev stop (git-fixes).
- wifi: ath12k: avoid explicit HW conversion argument in Rxdma replenish (bsc#1227149).
- wifi: ath12k: avoid explicit RBM id argument in Rxdma replenish (bsc#1227149).
- wifi: ath12k: avoid explicit mac id argument in Rxdma replenish (bsc#1227149).
- wifi: ath12k: avoid repeated hw access from ar (bsc#1227149).
- wifi: ath12k: avoid repeated wiphy access from hw (bsc#1227149).
- wifi: ath12k: call ath12k_mac_fils_discovery() without condition (bsc#1227149).
- wifi: ath12k: change DMA direction while mapping reinjected packets (git-fixes).
- wifi: ath12k: change MAC buffer ring size to 2048 (bsc#1227149).
- wifi: ath12k: change WLAN_SCAN_PARAMS_MAX_IE_LEN from 256 to 512 (bsc#1227149).
- wifi: ath12k: change interface combination for P2P mode (bsc#1227149).
- wifi: ath12k: change to initialize recovery variables earlier in ath12k_core_reset() (bsc#1227149).
- wifi: ath12k: change to treat alpha code na as world wide regdomain (bsc#1227149).
- wifi: ath12k: change to use dynamic memory for channel list of scan (bsc#1227149).
- wifi: ath12k: check M3 buffer size as well whey trying to reuse it (bsc#1227149).
- wifi: ath12k: check hardware major version for WCN7850 (bsc#1227149).
- wifi: ath12k: configure RDDM size to MHI for device recovery (bsc#1227149).
- wifi: ath12k: configure puncturing bitmap (bsc#1227149).
- wifi: ath12k: correct the data_type from QMI_OPT_FLAG to QMI_UNSIGNED_1_BYTE for mlo_capable (bsc#1227149).
- wifi: ath12k: delete the timer rx_replenish_retry during rmmod (bsc#1227149).
- wifi: ath12k: designating channel frequency for ROC scan (bsc#1227149).
- wifi: ath12k: disable QMI PHY capability learn in split-phy QCN9274 (bsc#1227149).
- wifi: ath12k: do not drop data frames from unassociated stations (bsc#1227149).
- wifi: ath12k: do not restore ASPM in case of single MSI vector (bsc#1227149).
- wifi: ath12k: drop NULL pointer check in ath12k_update_per_peer_tx_stats() (bsc#1227149).
- wifi: ath12k: drop failed transmitted frames from metric calculation (git-fixes).
- wifi: ath12k: enable 320 MHz bandwidth for 6 GHz band in EHT PHY capability for WCN7850 (bsc#1227149).
- wifi: ath12k: enable 802.11 power save mode in station mode (bsc#1227149).
- wifi: ath12k: enable IEEE80211_HW_SINGLE_SCAN_ON_ALL_BANDS for WCN7850 (bsc#1227149).
- wifi: ath12k: fetch correct pdev id from WMI_SERVICE_READY_EXT_EVENTID (bsc#1227149).
- wifi: ath12k: fix PCI read and write (bsc#1227149).
- wifi: ath12k: fix WARN_ON during ath12k_mac_update_vif_chan (bsc#1227149).
- wifi: ath12k: fix broken structure wmi_vdev_create_cmd (bsc#1227149).
- wifi: ath12k: fix conf_mutex in ath12k_mac_op_unassign_vif_chanctx() (bsc#1227149).
- wifi: ath12k: fix debug messages (bsc#1227149).
- wifi: ath12k: fix fetching MCBC flag for QCN9274 (bsc#1227149).
- wifi: ath12k: fix firmware assert during insmod in memory segment mode (bsc#1227149).
- wifi: ath12k: fix firmware crash during reo reinject (git-fixes).
- wifi: ath12k: fix invalid m3 buffer address (bsc#1227149).
- wifi: ath12k: fix invalid memory access while processing fragmented packets (git-fixes).
- wifi: ath12k: fix kernel crash during resume (bsc#1227149).
- wifi: ath12k: fix license in p2p.c and p2p.h (bsc#1227149).
- wifi: ath12k: fix peer metadata parsing (git-fixes).
- wifi: ath12k: fix potential wmi_mgmt_tx_queue race condition (bsc#1227149).
- wifi: ath12k: fix radar detection in 160 MHz (bsc#1227149).
- wifi: ath12k: fix recovery fail while firmware crash when doing channel switch (bsc#1227149).
- wifi: ath12k: fix the error handler of rfkill config (bsc#1227149).
- wifi: ath12k: fix the issue that the multicast/broadcast indicator is not read correctly for WCN7850 (bsc#1227149).
- wifi: ath12k: fix the problem that down grade phy mode operation (bsc#1227149).
- wifi: ath12k: fix wrong definition of CE ring's base address (git-fixes).
- wifi: ath12k: fix wrong definitions of hal_reo_update_rx_queue (bsc#1227149).
- wifi: ath12k: get msi_data again after request_irq is called (bsc#1227149).
- wifi: ath12k: implement handling of P2P NoA event (bsc#1227149).
- wifi: ath12k: implement remain on channel for P2P mode (bsc#1227149).
- wifi: ath12k: increase vdev setup timeout (bsc#1227149).
- wifi: ath12k: indicate NON MBSSID vdev by default during vdev start (bsc#1227149).
- wifi: ath12k: indicate scan complete for scan canceled when scan running (bsc#1227149).
- wifi: ath12k: indicate to mac80211 scan complete with aborted flag for ATH12K_SCAN_STARTING state (bsc#1227149).
- wifi: ath12k: move HE capabilities processing to a new function (bsc#1227149).
- wifi: ath12k: move peer delete after vdev stop of station for WCN7850 (bsc#1227149).
- wifi: ath12k: parse WMI service ready ext2 event (bsc#1227149).
- wifi: ath12k: peer assoc for 320 MHz (bsc#1227149).
- wifi: ath12k: prepare EHT peer assoc parameters (bsc#1227149).
- wifi: ath12k: propagate EHT capabilities to userspace (bsc#1227149).
- wifi: ath12k: refactor DP Rxdma ring structure (bsc#1227149).
- wifi: ath12k: refactor QMI MLO host capability helper function (bsc#1227149).
- wifi: ath12k: refactor ath12k_bss_assoc() (bsc#1227149).
- wifi: ath12k: refactor ath12k_mac_allocate() and ath12k_mac_destroy() (bsc#1227149).
- wifi: ath12k: refactor ath12k_mac_op_ampdu_action() (bsc#1227149).
- wifi: ath12k: refactor ath12k_mac_op_conf_tx() (bsc#1227149).
- wifi: ath12k: refactor ath12k_mac_op_config() (bsc#1227149).
- wifi: ath12k: refactor ath12k_mac_op_configure_filter() (bsc#1227149).
- wifi: ath12k: refactor ath12k_mac_op_flush() (bsc#1227149).
- wifi: ath12k: refactor ath12k_mac_op_start() (bsc#1227149).
- wifi: ath12k: refactor ath12k_mac_op_stop() (bsc#1227149).
- wifi: ath12k: refactor ath12k_mac_op_update_vif_offload() (bsc#1227149).
- wifi: ath12k: refactor ath12k_mac_register() and ath12k_mac_unregister() (bsc#1227149).
- wifi: ath12k: refactor ath12k_mac_setup_channels_rates() (bsc#1227149).
- wifi: ath12k: refactor ath12k_wmi_tlv_parse_alloc() (bsc#1227149).
- wifi: ath12k: refactor multiple MSI vector implementation (bsc#1227149).
- wifi: ath12k: refactor the rfkill worker (bsc#1227149).
- wifi: ath12k: register EHT mesh capabilities (bsc#1227149).
- wifi: ath12k: relax list iteration in ath12k_mac_vif_unref() (bsc#1227149).
- wifi: ath12k: relocate ath12k_dp_pdev_pre_alloc() call (bsc#1227149).
- wifi: ath12k: remove hal_desc_sz from hw params (bsc#1227149).
- wifi: ath12k: remove redundant memset() in ath12k_hal_reo_qdesc_setup() (bsc#1227149).
- wifi: ath12k: remove the unused scan_events from ath12k_wmi_scan_req_arg (bsc#1227149).
- wifi: ath12k: remove unused ATH12K_BD_IE_BOARD_EXT (bsc#1227149).
- wifi: ath12k: rename HE capabilities setup/copy functions (bsc#1227149).
- wifi: ath12k: rename the sc naming convention to ab (bsc#1227149).
- wifi: ath12k: rename the wmi_sc naming convention to wmi_ab (bsc#1227149).
- wifi: ath12k: replace ENOTSUPP with EOPNOTSUPP (bsc#1227149).
- wifi: ath12k: send WMI_PEER_REORDER_QUEUE_SETUP_CMDID when ADDBA session starts (bsc#1227149).
- wifi: ath12k: set IRQ affinity to CPU0 in case of one MSI vector (bsc#1227149).
- wifi: ath12k: set PERST pin no pull request for WCN7850 (bsc#1227149).
- wifi: ath12k: split hal_ops to support RX TLVs word mask compaction (bsc#1227149).
- wifi: ath12k: subscribe required word mask from rx tlv (bsc#1227149).
- wifi: ath12k: support default regdb while searching board-2.bin for WCN7850 (bsc#1227149).
- wifi: ath12k: trigger station disconnect on hardware restart (bsc#1227149).
- wifi: ath12k: use ATH12K_PCI_IRQ_DP_OFFSET for DP IRQ (bsc#1227149).
- wifi: ath12k: use correct flag field for 320 MHz channels (bsc#1227149).
- wifi: ath12k: use select for CRYPTO_MICHAEL_MIC (bsc#1227149).
- wifi: ath5k: Convert to platform remove callback returning void (bsc#1227149).
- wifi: ath5k: Remove redundant dev_err() (bsc#1227149).
- wifi: ath5k: ath5k_hw_get_median_noise_floor(): use swap() (bsc#1227149).
- wifi: ath5k: remove phydir check from ath5k_debug_init_device() (bsc#1227149).
- wifi: ath5k: remove unnecessary (void*) conversions (bsc#1227149).
- wifi: ath5k: remove unused ath5k_eeprom_info::ee_antenna (bsc#1227149).
- wifi: ath5k: replace deprecated strncpy with strscpy (bsc#1227149).
- wifi: ath6kl: Remove error checking for debugfs_create_dir() (bsc#1227149).
- wifi: ath6kl: remove unnecessary (void*) conversions (bsc#1227149).
- wifi: ath6kl: replace deprecated strncpy with memcpy (bsc#1227149).
- wifi: ath9k: Convert to platform remove callback returning void (bsc#1227149).
- wifi: ath9k: Remove unnecessary (void*) conversions (bsc#1227149).
- wifi: ath9k: Remove unnecessary ternary operators (bsc#1227149).
- wifi: ath9k: Remove unused declarations (bsc#1227149).
- wifi: ath9k: avoid using uninitialized array (bsc#1227149).
- wifi: ath9k: clean up function ath9k_hif_usb_resume (bsc#1227149).
- wifi: ath9k: consistently use kstrtoX_from_user() functions (bsc#1227149).
- wifi: ath9k: delete some unused/duplicate macros (bsc#1227149).
- wifi: ath9k: fix parameter check in ath9k_init_debug() (bsc#1227149).
- wifi: ath9k: remove redundant assignment to variable ret (bsc#1227149).
- wifi: ath9k: reset survey of current channel after a scan started (bsc#1227149).
- wifi: ath9k: simplify ar9003_hw_process_ini() (bsc#1227149).
- wifi: ath9k: use u32 for txgain indexes (bsc#1227149).
- wifi: ath9k: work around memset overflow warning (bsc#1227149).
- wifi: ath9k_htc: fix format-truncation warning (bsc#1227149).
- wifi: ath: Use is_multicast_ether_addr() to check multicast Ether address (bsc#1227149).
- wifi: ath: dfs_pattern_detector: Use flex array to simplify code (bsc#1227149).
- wifi: ath: remove unused-but-set parameter (bsc#1227149).
- wifi: ath: work around false-positive stringop-overread warning (bsc#1227149).
- wifi: atk10k: Do not opencode ath10k_pci_priv() in ath10k_ahb_priv() (bsc#1227149).
- wifi: atmel: remove unused ioctl function (bsc#1227149).
- wifi: b43: silence sparse warnings (bsc#1227149).
- wifi: brcm80211: replace deprecated strncpy with strscpy (bsc#1227149).
- wifi: brcmfmac: Annotate struct brcmf_gscan_config with __counted_by (bsc#1227149).
- wifi: brcmfmac: Detect corner error case earlier with log (bsc#1227149).
- wifi: brcmfmac: add linefeed at end of file (bsc#1227149).
- wifi: brcmfmac: allow per-vendor event handling (bsc#1227149).
- wifi: brcmfmac: do not cast hidden SSID attribute value to boolean (bsc#1227149).
- wifi: brcmfmac: do not pass hidden SSID attribute as value directly (bsc#1227149).
- wifi: brcmfmac: export firmware interface functions (bsc#1227149).
- wifi: brcmfmac: firmware: Annotate struct brcmf_fw_request with __counted_by (bsc#1227149).
- wifi: brcmfmac: fix format-truncation warnings (bsc#1227149).
- wifi: brcmfmac: fix gnu_printf warnings (bsc#1227149).
- wifi: brcmfmac: fweh: Add __counted_by for struct brcmf_fweh_queue_item and use struct_size() (bsc#1227149).
- wifi: brcmfmac: fweh: Fix boot crash on Raspberry Pi 4 (bsc#1227149).
- wifi: brcmfmac: move feature overrides before feature_disable (bsc#1227149).
- wifi: brcmsmac: LCN PHY code is used for BCM4313 2G-only device (git-fixes).
- wifi: brcmsmac: cleanup SCB-related data types (bsc#1227149).
- wifi: brcmsmac: fix gnu_printf warnings (bsc#1227149).
- wifi: brcmsmac: phy: Remove unreachable code (bsc#1227149).
- wifi: brcmsmac: remove more unused data types (bsc#1227149).
- wifi: brcmsmac: remove unused data type (bsc#1227149).
- wifi: brcmsmac: replace deprecated strncpy with memcpy (bsc#1227149).
- wifi: brcmsmac: silence sparse warnings (bsc#1227149).
- wifi: brcmutil: use helper function pktq_empty() instead of open code (bsc#1227149).
- wifi: carl9170: Remove redundant assignment to pointer super (bsc#1227149).
- wifi: carl9170: remove unnecessary (void*) conversions (bsc#1227149).
- wifi: cfg80211: Add support for setting TID to link mapping (bsc#1227149).
- wifi: cfg80211: Allow AP/P2PGO to indicate port authorization to peer STA/P2PClient (bsc#1227149).
- wifi: cfg80211: Extend support for scanning while MLO connected (bsc#1227149).
- wifi: cfg80211: Fix typo in documentation (bsc#1227149).
- wifi: cfg80211: Handle specific BSSID in 6GHz scanning (bsc#1227149).
- wifi: cfg80211: Include operating class 137 in 6GHz band (bsc#1227149).
- wifi: cfg80211: Lock wiphy in cfg80211_get_station (git-fixes).
- wifi: cfg80211: OWE DH IE handling offload (bsc#1227149).
- wifi: cfg80211: Replace ENOTSUPP with EOPNOTSUPP (bsc#1227149).
- wifi: cfg80211: Schedule regulatory check on BSS STA channel change (bsc#1227149).
- wifi: cfg80211: Update the default DSCP-to-UP mapping (bsc#1227149).
- wifi: cfg80211: add BSS usage reporting (bsc#1227149).
- wifi: cfg80211: add RNR with reporting AP information (bsc#1227149).
- wifi: cfg80211: add a flag to disable wireless extensions (bsc#1227149).
- wifi: cfg80211: add local_state_change to deauth trace (bsc#1227149).
- wifi: cfg80211: add locked debugfs wrappers (bsc#1227149).
- wifi: cfg80211: add support for SPP A-MSDUs (bsc#1227149).
- wifi: cfg80211: address several kerneldoc warnings (bsc#1227149).
- wifi: cfg80211: allow reg update by driver even if wiphy->regd is set (bsc#1227149).
- wifi: cfg80211: annotate iftype_data pointer with sparse (bsc#1227149).
- wifi: cfg80211: avoid double free if updating BSS fails (bsc#1227149).
- wifi: cfg80211: call reg_call_notifier on beacon hints (bsc#1227149).
- wifi: cfg80211: check RTNL when iterating devices (bsc#1227149).
- wifi: cfg80211: check wiphy mutex is held for wdev mutex (bsc#1227149).
- wifi: cfg80211: consume both probe response and beacon IEs (bsc#1227149).
- wifi: cfg80211: detect stuck ECSA element in probe resp (bsc#1227149).
- wifi: cfg80211: ensure cfg80211_bss_update frees IEs on error (bsc#1227149).
- wifi: cfg80211: export DFS CAC time and usable state helper functions (bsc#1227149).
- wifi: cfg80211: expose nl80211_chan_width_to_mhz for wide sharing (bsc#1227149).
- wifi: cfg80211: fix 6 GHz scan request building (stable-fixes).
- wifi: cfg80211: fix CQM for non-range use (bsc#1227149).
- wifi: cfg80211: fix header kernel-doc typos (bsc#1227149).
- wifi: cfg80211: fix kernel-doc for wiphy_delayed_work_flush() (bsc#1227149).
- wifi: cfg80211: fix spelling & punctutation (bsc#1227149).
- wifi: cfg80211: fix the order of arguments for trace events of the tx_rx_evt class (stable-fixes).
- wifi: cfg80211: fix typo in cfg80211_calculate_bitrate_he() (git-fixes).
- wifi: cfg80211: fully move wiphy work to unbound workqueue (git-fixes).
- wifi: cfg80211: generate an ML element for per-STA profiles (bsc#1227149).
- wifi: cfg80211: handle 2x996 RU allocation in cfg80211_calculate_bitrate_he() (git-fixes).
- wifi: cfg80211: handle UHB AP and STA power type (bsc#1227149).
- wifi: cfg80211: hold wiphy lock in cfg80211_any_wiphy_oper_chan() (bsc#1227149).
- wifi: cfg80211: hold wiphy mutex for send_interface (bsc#1227149).
- wifi: cfg80211: improve documentation for flag fields (bsc#1227149).
- wifi: cfg80211: introduce cfg80211_ssid_eq() (bsc#1227149).
- wifi: cfg80211: make RX assoc data const (bsc#1227149).
- wifi: cfg80211: make read-only array centers_80mhz static const (bsc#1227149).
- wifi: cfg80211: modify prototype for change_beacon (bsc#1227149).
- wifi: cfg80211: pmsr: use correct nla_get_uX functions (git-fixes).
- wifi: cfg80211: reg: Support P2P operation on DFS channels (bsc#1227149).
- wifi: cfg80211: reg: describe return values in kernel-doc (bsc#1227149).
- wifi: cfg80211: reg: fix various kernel-doc issues (bsc#1227149).
- wifi: cfg80211: reg: hold wiphy mutex for wdev iteration (bsc#1227149).
- wifi: cfg80211: remove scan_width support (bsc#1227149).
- wifi: cfg80211: remove wdev mutex (bsc#1227149).
- wifi: cfg80211: rename UHB to 6 GHz (bsc#1227149).
- wifi: cfg80211: report per-link errors during association (bsc#1227149).
- wifi: cfg80211: report unprotected deauth/disassoc in wowlan (bsc#1227149).
- wifi: cfg80211: restrict NL80211_ATTR_TXQ_QUANTUM values (git-fixes).
- wifi: cfg80211: save power spectral density(psd) of regulatory rule (bsc#1227149).
- wifi: cfg80211: set correct param change count in ML element (bsc#1227149).
- wifi: cfg80211: sme: hold wiphy lock for wdev iteration (bsc#1227149).
- wifi: cfg80211: sort certificates in build (bsc#1227149).
- wifi: cfg80211: split struct cfg80211_ap_settings (bsc#1227149).
- wifi: cfg80211: validate HE operation element parsing (bsc#1227149).
- wifi: cfg80211: wext: add extra SIOCSIWSCAN data check (stable-fixes).
- wifi: cfg80211: wext: convert return value to kernel-doc (bsc#1227149).
- wifi: cfg80211: wext: set ssids=NULL for passive scans (git-fixes).
- wifi: cw1200: Avoid processing an invalid TIM IE (bsc#1227149).
- wifi: cw1200: Convert to GPIO descriptors (bsc#1227149).
- wifi: cw1200: fix __le16 sparse warnings (bsc#1227149).
- wifi: cw1200: restore endian swapping (bsc#1227149).
- wifi: drivers: Explicitly include correct DT includes (bsc#1227149).
- wifi: fill in MODULE_DESCRIPTION()s for Broadcom WLAN (bsc#1227149).
- wifi: fill in MODULE_DESCRIPTION()s for ar5523 (bsc#1227149).
- wifi: fill in MODULE_DESCRIPTION()s for mt76 drivers (bsc#1227149).
- wifi: fill in MODULE_DESCRIPTION()s for p54spi (bsc#1227149).
- wifi: fill in MODULE_DESCRIPTION()s for wcn36xx (bsc#1227149).
- wifi: fill in MODULE_DESCRIPTION()s for wilc1000 (bsc#1227149).
- wifi: fill in MODULE_DESCRIPTION()s for wl1251 and wl12xx (bsc#1227149).
- wifi: fill in MODULE_DESCRIPTION()s for wl18xx (bsc#1227149).
- wifi: fill in MODULE_DESCRIPTION()s for wlcore (bsc#1227149).
- wifi: hostap: Add __counted_by for struct prism2_download_data and use struct_size() (bsc#1227149).
- wifi: hostap: fix stringop-truncations GCC warning (bsc#1227149).
- wifi: hostap: remove unused ioctl function (bsc#1227149).
- wifi: ieee80211: add UL-bandwidth definition of trigger frame (bsc#1227149).
- wifi: ieee80211: add definitions for negotiated TID to Link map (bsc#1227149).
- wifi: ieee80211: check for NULL in ieee80211_mle_size_ok() (stable-fixes).
- wifi: iwlmei: do not send SAP messages if AMT is disabled (bsc#1227149).
- wifi: iwlmei: do not send nic info with invalid mac address (bsc#1227149).
- wifi: iwlmei: send HOST_GOES_DOWN message even if wiamt is disabled (bsc#1227149).
- wifi: iwlmei: send driver down SAP message only if wiamt is enabled (bsc#1227149).
- wifi: iwlmvm: fw: Add new OEM vendor to tas approved list (bsc#1227149).
- wifi: iwlwifi: Add rf_mapping of new wifi7 devices (bsc#1227149).
- wifi: iwlwifi: Add support for PPAG cmd v5 and PPAG revision 3 (bsc#1227149).
- wifi: iwlwifi: Add support for new 802.11be device (bsc#1227149).
- wifi: iwlwifi: Do not mark DFS channels as NO-IR (bsc#1227149).
- wifi: iwlwifi: Extract common prph mac/phy regions data dump logic (bsc#1227149).
- wifi: iwlwifi: Fix spelling mistake 'SESION' -> 'SESSION' (bsc#1227149).
- wifi: iwlwifi: Use request_module_nowait (bsc#1227149).
- wifi: iwlwifi: abort scan when rfkill on but device enabled (bsc#1227149).
- wifi: iwlwifi: add HONOR to PPAG approved list (bsc#1227149).
- wifi: iwlwifi: add Razer to ppag approved list (bsc#1227149).
- wifi: iwlwifi: add mapping of a periphery register crf for WH RF (bsc#1227149).
- wifi: iwlwifi: add new RF support for wifi7 (bsc#1227149).
- wifi: iwlwifi: add support for SNPS DPHYIP region type (bsc#1227149).
- wifi: iwlwifi: add support for a wiphy_work rx handler (bsc#1227149).
- wifi: iwlwifi: add support for activating UNII-1 in WW via BIOS (bsc#1227149).
- wifi: iwlwifi: add support for new ini region types (bsc#1227149).
- wifi: iwlwifi: adjust rx_phyinfo debugfs to MLO (bsc#1227149).
- wifi: iwlwifi: always have 'uats_enabled' (bsc#1227149).
- wifi: iwlwifi: api: clean up some kernel-doc/typos (bsc#1227149).
- wifi: iwlwifi: api: dbg-tlv: fix up kernel-doc (bsc#1227149).
- wifi: iwlwifi: api: fix a small upper/lower-case typo (bsc#1227149).
- wifi: iwlwifi: api: fix center_freq label in PHY diagram (bsc#1227149).
- wifi: iwlwifi: api: fix constant version to match FW (bsc#1227149).
- wifi: iwlwifi: api: fix kernel-doc reference (bsc#1227149).
- wifi: iwlwifi: bump FW API to 84 for AX/BZ/SC devices (bsc#1227149).
- wifi: iwlwifi: bump FW API to 86 for AX/BZ/SC devices (bsc#1227149).
- wifi: iwlwifi: bump FW API to 87 for AX/BZ/SC devices (bsc#1227149).
- wifi: iwlwifi: bump FW API to 88 for AX/BZ/SC devices (bsc#1227149).
- wifi: iwlwifi: cancel session protection only if there is one (bsc#1227149).
- wifi: iwlwifi: change link id in time event to s8 (bsc#1227149).
- wifi: iwlwifi: check for kmemdup() return value in iwl_parse_tlv_firmware() (bsc#1227149).
- wifi: iwlwifi: cleanup BT Shared Single Antenna code (bsc#1227149).
- wifi: iwlwifi: cleanup sending PER_CHAIN_LIMIT_OFFSET_CMD (bsc#1227149).
- wifi: iwlwifi: cleanup uefi variables loading (bsc#1227149).
- wifi: iwlwifi: clear link_id in time_event (bsc#1227149).
- wifi: iwlwifi: dbg-tlv: avoid extra allocation/copy (bsc#1227149).
- wifi: iwlwifi: dbg-tlv: use struct_size() for allocation (bsc#1227149).
- wifi: iwlwifi: dbg_ini: move iwl_dbg_tlv_free outside of debugfs ifdef (git-fixes).
- wifi: iwlwifi: disable 160 MHz based on subsystem device ID (bsc#1227149).
- wifi: iwlwifi: disable eSR when BT is active (bsc#1227149).
- wifi: iwlwifi: disable multi rx queue for 9000 (bsc#1227149).
- wifi: iwlwifi: do not check TAS block list size twice (bsc#1227149).
- wifi: iwlwifi: do not use TRUE/FALSE with bool (bsc#1227149).
- wifi: iwlwifi: drop NULL pointer check in iwl_mvm_tzone_set_trip_temp() (bsc#1227149).
- wifi: iwlwifi: dvm: remove kernel-doc warnings (bsc#1227149).
- wifi: iwlwifi: error-dump: fix kernel-doc issues (bsc#1227149).
- wifi: iwlwifi: fail NIC access fast on dead NIC (bsc#1227149).
- wifi: iwlwifi: fix #ifdef CONFIG_ACPI check (bsc#1227149).
- wifi: iwlwifi: fix iwl_mvm_get_valid_rx_ant() (git-fixes).
- wifi: iwlwifi: fix opmode start/stop race (bsc#1227149).
- wifi: iwlwifi: fix some kernel-doc issues (bsc#1227149).
- wifi: iwlwifi: fix system commands group ordering (bsc#1227149).
- wifi: iwlwifi: fix the rf step and flavor bits range (bsc#1227149).
- wifi: iwlwifi: fw: Add support for UATS table in UHB (bsc#1227149).
- wifi: iwlwifi: fw: Fix debugfs command sending (bsc#1227149).
- wifi: iwlwifi: fw: allow vmalloc for PNVM image (bsc#1227149).
- wifi: iwlwifi: fw: dbg: ensure correct config name sizes (bsc#1227149).
- wifi: iwlwifi: fw: disable firmware debug asserts (bsc#1227149).
- wifi: iwlwifi: fw: file: clean up kernel-doc (bsc#1227149).
- wifi: iwlwifi: fw: file: do not use [0] for variable arrays (bsc#1227149).
- wifi: iwlwifi: fw: fix compiler warning for NULL string print (bsc#1227149).
- wifi: iwlwifi: fw: increase fw_version string size (bsc#1227149).
- wifi: iwlwifi: fw: reconstruct the API/CAPA enum number (bsc#1227149).
- wifi: iwlwifi: fw: replace deprecated strncpy with strscpy_pad (bsc#1227149).
- wifi: iwlwifi: handle per-phy statistics from fw (bsc#1227149).
- wifi: iwlwifi: implement GLAI ACPI table loading (bsc#1227149).
- wifi: iwlwifi: implement can_activate_links callback (bsc#1227149).
- wifi: iwlwifi: implement enable/disable for China 2022 regulatory (bsc#1227149).
- wifi: iwlwifi: iwl-fh.h: fix kernel-doc issues (bsc#1227149).
- wifi: iwlwifi: iwl-trans.h: clean up kernel-doc (bsc#1227149).
- wifi: iwlwifi: iwlmvm: handle unprotected deauth/disassoc in d3 (bsc#1227149).
- wifi: iwlwifi: load b0 version of ucode for HR1/HR2 (bsc#1227149).
- wifi: iwlwifi: make TB reallocation a debug message (bsc#1227149).
- wifi: iwlwifi: make time_events MLO aware (bsc#1227149).
- wifi: iwlwifi: mei: return error from register when not built (bsc#1227149).
- wifi: iwlwifi: mvm: Add basic link selection logic (bsc#1227149).
- wifi: iwlwifi: mvm: Add support for removing responder TKs (bsc#1227149).
- wifi: iwlwifi: mvm: Allow DFS concurrent operation (bsc#1227149).
- wifi: iwlwifi: mvm: Configure the link mapping for non-MLD FW (bsc#1227149).
- wifi: iwlwifi: mvm: Correctly report TSF data in scan complete (bsc#1227149).
- wifi: iwlwifi: mvm: Declare support for secure LTF measurement (bsc#1227149).
- wifi: iwlwifi: mvm: Do not warn if valid link pair was not found (bsc#1227149).
- wifi: iwlwifi: mvm: Do not warn on invalid link on scan complete (bsc#1227149).
- wifi: iwlwifi: mvm: Extend support for P2P service discovery (bsc#1227149).
- wifi: iwlwifi: mvm: Fix FTM initiator flags (bsc#1227149).
- wifi: iwlwifi: mvm: Fix scan abort handling with HW rfkill (stable-fixes).
- wifi: iwlwifi: mvm: Fix unreachable code path (bsc#1227149).
- wifi: iwlwifi: mvm: Handle BIGTK cipher in kek_kck cmd (stable-fixes).
- wifi: iwlwifi: mvm: Keep connection in case of missed beacons during RX (bsc#1227149).
- wifi: iwlwifi: mvm: Return success if link could not be removed (bsc#1227149).
- wifi: iwlwifi: mvm: Use the link ID provided in scan request (bsc#1227149).
- wifi: iwlwifi: mvm: add US/Canada MCC to API (bsc#1227149).
- wifi: iwlwifi: mvm: add a debug print when we get a BAR (bsc#1227149).
- wifi: iwlwifi: mvm: add a debugfs hook to clear the monitor data (bsc#1227149).
- wifi: iwlwifi: mvm: add a per-link debugfs (bsc#1227149).
- wifi: iwlwifi: mvm: add a print when sending RLC command (bsc#1227149).
- wifi: iwlwifi: mvm: add start mac ctdp sum calculation debugfs handler (bsc#1227149).
- wifi: iwlwifi: mvm: add support for TID to link mapping neg request (bsc#1227149).
- wifi: iwlwifi: mvm: add support for new wowlan_info_notif (bsc#1227149).
- wifi: iwlwifi: mvm: advertise MLO only if EHT is enabled (bsc#1227149).
- wifi: iwlwifi: mvm: advertise support for SCS traffic description (bsc#1227149).
- wifi: iwlwifi: mvm: advertise support for protected ranging negotiation (bsc#1227149).
- wifi: iwlwifi: mvm: always update keys in D3 exit (bsc#1227149).
- wifi: iwlwifi: mvm: avoid garbage iPN (bsc#1227149).
- wifi: iwlwifi: mvm: calculate EMLSR mode after connection (bsc#1227149).
- wifi: iwlwifi: mvm: check AP supports EMLSR (bsc#1227149).
- wifi: iwlwifi: mvm: check for iwl_mvm_mld_update_sta() errors (bsc#1227149).
- wifi: iwlwifi: mvm: check link more carefully (bsc#1227149).
- wifi: iwlwifi: mvm: check n_ssids before accessing the ssids (git-fixes).
- wifi: iwlwifi: mvm: check own capabilities for EMLSR (bsc#1227149).
- wifi: iwlwifi: mvm: cleanup MLO and non-MLO unification code (bsc#1227149).
- wifi: iwlwifi: mvm: combine condition/warning (bsc#1227149).
- wifi: iwlwifi: mvm: consider having one active link (bsc#1227149).
- wifi: iwlwifi: mvm: const-ify chandef pointers (bsc#1227149).
- wifi: iwlwifi: mvm: cycle FW link on chanctx removal (bsc#1227149).
- wifi: iwlwifi: mvm: d3: avoid intermediate/early mutex unlock (bsc#1227149).
- wifi: iwlwifi: mvm: d3: disconnect on GTK rekey failure (bsc#1227149).
- wifi: iwlwifi: mvm: d3: fix WoWLAN command version lookup (stable-fixes).
- wifi: iwlwifi: mvm: d3: implement suspend with MLO (bsc#1227149).
- wifi: iwlwifi: mvm: debugfs for fw system stats (bsc#1227149).
- wifi: iwlwifi: mvm: define RX queue sync timeout as a macro (bsc#1227149).
- wifi: iwlwifi: mvm: disable MLO for the time being (bsc#1227149).
- wifi: iwlwifi: mvm: disallow puncturing in US/Canada (bsc#1227149).
- wifi: iwlwifi: mvm: disconnect long CSA only w/o alternative (bsc#1227149).
- wifi: iwlwifi: mvm: disconnect station vifs if recovery failed (bsc#1227149).
- wifi: iwlwifi: mvm: do not abort queue sync in CT-kill (bsc#1227149).
- wifi: iwlwifi: mvm: do not add dummy phy context (bsc#1227149).
- wifi: iwlwifi: mvm: do not always disable EMLSR due to BT coex (bsc#1227149).
- wifi: iwlwifi: mvm: do not do duplicate detection for nullfunc packets (bsc#1227149).
- wifi: iwlwifi: mvm: do not initialize csa_work twice (git-fixes).
- wifi: iwlwifi: mvm: do not limit VLP/AFC to UATS-enabled (git-fixes).
- wifi: iwlwifi: mvm: do not read past the mfuart notifcation (git-fixes).
- wifi: iwlwifi: mvm: do not send BT_COEX_CI command on new devices (bsc#1227149).
- wifi: iwlwifi: mvm: do not send NDPs for new tx devices (bsc#1227149).
- wifi: iwlwifi: mvm: do not send STA_DISABLE_TX_CMD for newer firmware (bsc#1227149).
- wifi: iwlwifi: mvm: do not send the smart fifo command if not needed (bsc#1227149).
- wifi: iwlwifi: mvm: do not set trigger frame padding in AP mode (bsc#1227149).
- wifi: iwlwifi: mvm: do not support reduced tx power on ack for new devices (bsc#1227149).
- wifi: iwlwifi: mvm: do not wake up rx_sync_waitq upon RFKILL (git-fixes).
- wifi: iwlwifi: mvm: enable FILS DF Tx on non-PSC channel (bsc#1227149).
- wifi: iwlwifi: mvm: enable HE TX/RX <242 tone RU on new RFs (bsc#1227149).
- wifi: iwlwifi: mvm: expand queue sync warning messages (bsc#1227149).
- wifi: iwlwifi: mvm: extend alive timeout to 2 seconds (bsc#1227149).
- wifi: iwlwifi: mvm: fix ROC version check (bsc#1227149).
- wifi: iwlwifi: mvm: fix SB CFG check (bsc#1227149).
- wifi: iwlwifi: mvm: fix a battery life regression (bsc#1227149).
- wifi: iwlwifi: mvm: fix a crash on 7265 (bsc#1227149).
- wifi: iwlwifi: mvm: fix kernel-doc (bsc#1227149).
- wifi: iwlwifi: mvm: fix link ID management (bsc#1227149).
- wifi: iwlwifi: mvm: fix recovery flow in CSA (bsc#1227149).
- wifi: iwlwifi: mvm: fix regdb initialization (bsc#1227149).
- wifi: iwlwifi: mvm: fix the PHY context resolution for p2p device (bsc#1227149).
- wifi: iwlwifi: mvm: fix the TXF mapping for BZ devices (bsc#1227149).
- wifi: iwlwifi: mvm: fix the key PN index (bsc#1227149).
- wifi: iwlwifi: mvm: fix thermal kernel-doc (bsc#1227149).
- wifi: iwlwifi: mvm: fold the ref++ into iwl_mvm_phy_ctxt_add (bsc#1227149).
- wifi: iwlwifi: mvm: handle BA session teardown in RF-kill (stable-fixes).
- wifi: iwlwifi: mvm: handle debugfs names more carefully (bsc#1227149).
- wifi: iwlwifi: mvm: handle link-STA allocation in restart (bsc#1227149).
- wifi: iwlwifi: mvm: implement ROC version 3 (bsc#1227149).
- wifi: iwlwifi: mvm: implement new firmware API for statistics (bsc#1227149).
- wifi: iwlwifi: mvm: increase session protection after CSA (bsc#1227149).
- wifi: iwlwifi: mvm: introduce PHY_CONTEXT_CMD_API_VER_5 (bsc#1227149).
- wifi: iwlwifi: mvm: introduce esr_disable_reason (bsc#1227149).
- wifi: iwlwifi: mvm: iterate active links for STA queues (bsc#1227149).
- wifi: iwlwifi: mvm: limit EHT 320 MHz MCS for STEP URM (bsc#1227149).
- wifi: iwlwifi: mvm: limit pseudo-D3 to 60 seconds (bsc#1227149).
- wifi: iwlwifi: mvm: log dropped frames (bsc#1227149).
- wifi: iwlwifi: mvm: log dropped packets due to MIC error (bsc#1227149).
- wifi: iwlwifi: mvm: make 'pldr_sync' mode effective (bsc#1227149).
- wifi: iwlwifi: mvm: make functions public (bsc#1227149).
- wifi: iwlwifi: mvm: make pldr_sync AX210 specific (bsc#1227149).
- wifi: iwlwifi: mvm: move BA notif messages before action (bsc#1227149).
- wifi: iwlwifi: mvm: move RU alloc B2 placement (bsc#1227149).
- wifi: iwlwifi: mvm: move listen interval to constants (bsc#1227149).
- wifi: iwlwifi: mvm: offload IGTK in AP if BIGTK is supported (bsc#1227149).
- wifi: iwlwifi: mvm: partially support PHY context version 6 (bsc#1227149).
- wifi: iwlwifi: mvm: pick the version of SESSION_PROTECTION_NOTIF (bsc#1227149).
- wifi: iwlwifi: mvm: properly set 6 GHz channel direct probe option (stable-fixes).
- wifi: iwlwifi: mvm: reduce maximum RX A-MPDU size (bsc#1227149).
- wifi: iwlwifi: mvm: refactor TX rate handling (bsc#1227149).
- wifi: iwlwifi: mvm: refactor duplicate chanctx condition (bsc#1227149).
- wifi: iwlwifi: mvm: remove EHT code from mac80211.c (bsc#1227149).
- wifi: iwlwifi: mvm: remove IWL_MVM_STATUS_NEED_FLUSH_P2P (bsc#1227149).
- wifi: iwlwifi: mvm: remove flags for enable/disable beacon filter (bsc#1227149).
- wifi: iwlwifi: mvm: remove one queue sync on BA session stop (bsc#1227149).
- wifi: iwlwifi: mvm: remove set_tim callback for MLD ops (bsc#1227149).
- wifi: iwlwifi: mvm: remove stale STA link data during restart (stable-fixes).
- wifi: iwlwifi: mvm: revert gen2 TX A-MPDU size to 64 (git-fixes).
- wifi: iwlwifi: mvm: rework debugfs handling (bsc#1227149).
- wifi: iwlwifi: mvm: set properly mac header (git-fixes).
- wifi: iwlwifi: mvm: show dump even for pldr_sync (bsc#1227149).
- wifi: iwlwifi: mvm: show skb_mac_gso_segment() failure reason (bsc#1227149).
- wifi: iwlwifi: mvm: simplify the reorder buffer (bsc#1227149).
- wifi: iwlwifi: mvm: skip adding debugfs symlink for reconfig (bsc#1227149).
- wifi: iwlwifi: mvm: support CSA with MLD (bsc#1227149).
- wifi: iwlwifi: mvm: support SPP A-MSDUs (bsc#1227149).
- wifi: iwlwifi: mvm: support flush on AP interfaces (bsc#1227149).
- wifi: iwlwifi: mvm: support injection antenna control (bsc#1227149).
- wifi: iwlwifi: mvm: support iwl_dev_tx_power_cmd_v8 (bsc#1227149).
- wifi: iwlwifi: mvm: support set_antenna() (bsc#1227149).
- wifi: iwlwifi: mvm: unlock mvm if there is no primary link (bsc#1227149).
- wifi: iwlwifi: mvm: use fast balance scan in case of an active P2P GO (bsc#1227149).
- wifi: iwlwifi: mvm: use the new command to clear the internal buffer (bsc#1227149).
- wifi: iwlwifi: mvm: work around A-MSDU size problem (bsc#1227149).
- wifi: iwlwifi: no power save during transition to D3 (bsc#1227149).
- wifi: iwlwifi: nvm-parse: advertise common packet padding (bsc#1227149).
- wifi: iwlwifi: nvm: parse the VLP/AFC bit from regulatory (bsc#1227149).
- wifi: iwlwifi: pcie: (re-)assign BAR0 on driver bind (bsc#1227149).
- wifi: iwlwifi: pcie: Add new PCI device id and CNVI (bsc#1227149).
- wifi: iwlwifi: pcie: clean up WFPM control bits (bsc#1227149).
- wifi: iwlwifi: pcie: clean up device removal work (bsc#1227149).
- wifi: iwlwifi: pcie: clean up gen1/gen2 TFD unmap (bsc#1227149).
- wifi: iwlwifi: pcie: do not allow hw-rfkill to stop device on gen2 (bsc#1227149).
- wifi: iwlwifi: pcie: dump CSRs before removal (bsc#1227149).
- wifi: iwlwifi: pcie: enable TOP fatal error interrupt (bsc#1227149).
- wifi: iwlwifi: pcie: fix kernel-doc issues (bsc#1227149).
- wifi: iwlwifi: pcie: get_crf_id() can be void (bsc#1227149).
- wifi: iwlwifi: pcie: give up mem read if HW is dead (bsc#1227149).
- wifi: iwlwifi: pcie: move gen1 TB handling to header (bsc#1227149).
- wifi: iwlwifi: pcie: point invalid TFDs to invalid data (bsc#1227149).
- wifi: iwlwifi: pcie: propagate iwl_pcie_gen2_apm_init() error (bsc#1227149).
- wifi: iwlwifi: pcie: rescan bus if no parent (bsc#1227149).
- wifi: iwlwifi: prepare for reading DSM from UEFI (bsc#1227149).
- wifi: iwlwifi: prepare for reading PPAG table from UEFI (bsc#1227149).
- wifi: iwlwifi: prepare for reading SAR tables from UEFI (bsc#1227149).
- wifi: iwlwifi: prepare for reading SPLC from UEFI (bsc#1227149).
- wifi: iwlwifi: prepare for reading TAS table from UEFI (bsc#1227149).
- wifi: iwlwifi: properly check if link is active (bsc#1227149).
- wifi: iwlwifi: properly set WIPHY_FLAG_SUPPORTS_EXT_KEK_KCK (stable-fixes).
- wifi: iwlwifi: queue: fix kernel-doc (bsc#1227149).
- wifi: iwlwifi: queue: improve warning for no skb in reclaim (bsc#1227149).
- wifi: iwlwifi: queue: move iwl_txq_gen2_set_tb() up (bsc#1227149).
- wifi: iwlwifi: read DSM func 2 for specific RF types (bsc#1227149).
- wifi: iwlwifi: read DSM functions from UEFI (bsc#1227149).
- wifi: iwlwifi: read ECKV table from UEFI (bsc#1227149).
- wifi: iwlwifi: read PPAG table from UEFI (bsc#1227149).
- wifi: iwlwifi: read SAR tables from UEFI (bsc#1227149).
- wifi: iwlwifi: read SPLC from UEFI (bsc#1227149).
- wifi: iwlwifi: read WRDD table from UEFI (bsc#1227149).
- wifi: iwlwifi: read WTAS table from UEFI (bsc#1227149).
- wifi: iwlwifi: read mac step from aux register (bsc#1227149).
- wifi: iwlwifi: refactor RX tracing (bsc#1227149).
- wifi: iwlwifi: remove 'def_rx_queue' struct member (bsc#1227149).
- wifi: iwlwifi: remove Gl A-step remnants (bsc#1227149).
- wifi: iwlwifi: remove WARN from read_mem32() (bsc#1227149).
- wifi: iwlwifi: remove async command callback (bsc#1227149).
- wifi: iwlwifi: remove dead-code (bsc#1227149).
- wifi: iwlwifi: remove extra kernel-doc (bsc#1227149).
- wifi: iwlwifi: remove memory check for LMAC error address (bsc#1227149).
- wifi: iwlwifi: remove retry loops in start (bsc#1227149).
- wifi: iwlwifi: remove unused function prototype (bsc#1227149).
- wifi: iwlwifi: replace ENOTSUPP with EOPNOTSUPP (bsc#1227149).
- wifi: iwlwifi: return negative -EINVAL instead of positive EINVAL (bsc#1227149).
- wifi: iwlwifi: rfi: use a single DSM function for all RFI configurations (bsc#1227149).
- wifi: iwlwifi: send EDT table to FW (bsc#1227149).
- wifi: iwlwifi: separate TAS 'read-from-BIOS' and 'send-to-FW' flows (bsc#1227149).
- wifi: iwlwifi: simplify getting DSM from ACPI (bsc#1227149).
- wifi: iwlwifi: skip affinity setting on non-SMP (bsc#1227149).
- wifi: iwlwifi: skip opmode start retries on dead transport (bsc#1227149).
- wifi: iwlwifi: small cleanups in PPAG table flows (bsc#1227149).
- wifi: iwlwifi: support link command version 2 (bsc#1227149).
- wifi: iwlwifi: support link id in SESSION_PROTECTION_NOTIF (bsc#1227149).
- wifi: iwlwifi: support link_id in SESSION_PROTECTION cmd (bsc#1227149).
- wifi: iwlwifi: take SGOM and UATS code out of ACPI ifdef (bsc#1227149).
- wifi: iwlwifi: take send-DSM-to-FW flows out of ACPI ifdef (bsc#1227149).
- wifi: iwlwifi: trace full frames with TX status request (bsc#1227149).
- wifi: iwlwifi: update context info structure definitions (bsc#1227149).
- wifi: iwlwifi: use system_unbound_wq for debug dump (bsc#1227149).
- wifi: iwlwifi: validate PPAG table when sent to FW (bsc#1227149).
- wifi: lib80211: remove unused variables iv32 and iv16 (bsc#1227149).
- wifi: libertas: Follow renaming of SPI 'master' to 'controller' (bsc#1227149).
- wifi: libertas: add missing calls to cancel_work_sync() (bsc#1227149).
- wifi: libertas: cleanup SDIO reset (bsc#1227149).
- wifi: libertas: handle possible spu_write_u16() errors (bsc#1227149).
- wifi: libertas: prefer kstrtoX() for simple integer conversions (bsc#1227149).
- wifi: libertas: simplify list operations in free_if_spi_card() (bsc#1227149).
- wifi: libertas: use convenient lists to manage SDIO packets (bsc#1227149).
- wifi: mac80211: Add __counted_by for struct ieee802_11_elems and use struct_size() (bsc#1227149).
- wifi: mac80211: Avoid address calculations via out of bounds array indexing (stable-fixes).
- wifi: mac80211: Check if we had first beacon with relevant links (bsc#1227149).
- wifi: mac80211: Do not force off-channel for management Tx with MLO (bsc#1227149).
- wifi: mac80211: Do not include crypto/algapi.h (bsc#1227149).
- wifi: mac80211: Extend support for scanning while MLO connected (bsc#1227149).
- wifi: mac80211: Fix SMPS handling in the context of MLO (bsc#1227149).
- wifi: mac80211: Fix deadlock in ieee80211_sta_ps_deliver_wakeup() (git-fixes).
- wifi: mac80211: Notify the low level driver on change in MLO valid links (bsc#1227149).
- wifi: mac80211: Print local link address during authentication (bsc#1227149).
- wifi: mac80211: Recalc offload when monitor stop (git-fixes).
- wifi: mac80211: Remove unused function declarations (bsc#1227149).
- wifi: mac80211: Rename and update IEEE80211_VIF_DISABLE_SMPS_OVERRIDE (bsc#1227149).
- wifi: mac80211: Replace ENOTSUPP with EOPNOTSUPP (bsc#1227149).
- wifi: mac80211: Sanity check tx bitrate if not provided by driver (bsc#1227149).
- wifi: mac80211: Schedule regulatory channels check on bandwith change (bsc#1227149).
- wifi: mac80211: Skip association timeout update after comeback rejection (bsc#1227149).
- wifi: mac80211: add a driver callback to add vif debugfs (bsc#1227149).
- wifi: mac80211: add a driver callback to check active_links (bsc#1227149).
- wifi: mac80211: add a flag to disallow puncturing (bsc#1227149).
- wifi: mac80211: add back SPDX identifier (bsc#1227149).
- wifi: mac80211: add ieee80211_tdls_sta_link_id() (stable-fixes).
- wifi: mac80211: add link id to ieee80211_gtk_rekey_add() (bsc#1227149).
- wifi: mac80211: add link id to mgd_prepare_tx() (bsc#1227149).
- wifi: mac80211: add more ops assertions (bsc#1227149).
- wifi: mac80211: add more warnings about inserting sta info (bsc#1227149).
- wifi: mac80211: add support for SPP A-MSDUs (bsc#1227149).
- wifi: mac80211: add support for mld in ieee80211_chswitch_done (bsc#1227149).
- wifi: mac80211: add support for parsing TID to Link mapping element (bsc#1227149).
- wifi: mac80211: add/remove driver debugfs entries as appropriate (bsc#1227149).
- wifi: mac80211: additions to change_beacon() (bsc#1227149).
- wifi: mac80211: address some kerneldoc warnings (bsc#1227149).
- wifi: mac80211: allow 64-bit radiotap timestamps (bsc#1227149).
- wifi: mac80211: allow for_each_sta_active_link() under RCU (bsc#1227149).
- wifi: mac80211: apply mcast rate only if interface is up (stable-fixes).
- wifi: mac80211: cancel multi-link reconf work on disconnect (git-fixes).
- wifi: mac80211: chanctx emulation set CHANGE_CHANNEL when in_reconfig (git-fixes).
- wifi: mac80211: check EHT/TTLM action frame length (bsc#1227149).
- wifi: mac80211: check wiphy mutex in ops (bsc#1227149).
- wifi: mac80211: cleanup airtime arithmetic with ieee80211_sta_keep_active() (bsc#1227149).
- wifi: mac80211: cleanup auth_data only if association continues (bsc#1227149).
- wifi: mac80211: convert A-MPDU work to wiphy work (bsc#1227149).
- wifi: mac80211: correctly parse Spatial Reuse Parameter Set element (git-fixes).
- wifi: mac80211: correctly set active links upon TTLM (bsc#1227149).
- wifi: mac80211: correcty limit wider BW TDLS STAs (git-fixes).
- wifi: mac80211: debugfs: lock wiphy instead of RTNL (bsc#1227149).
- wifi: mac80211: describe return values in kernel-doc (bsc#1227149).
- wifi: mac80211: disable softirqs for queued frame handling (git-fixes).
- wifi: mac80211: do not connect to an AP while it's in a CSA process (bsc#1227149).
- wifi: mac80211: do not re-add debugfs entries during resume (bsc#1227149).
- wifi: mac80211: do not select link ID if not provided in scan request (bsc#1227149).
- wifi: mac80211: do not set ESS capab bit in assoc request (bsc#1227149).
- wifi: mac80211: do not use rate mask for scanning (stable-fixes).
- wifi: mac80211: drop robust action frames before assoc (bsc#1227149).
- wifi: mac80211: drop spurious WARN_ON() in ieee80211_ibss_csa_beacon() (bsc#1227149).
- wifi: mac80211: ensure beacon is non-S1G prior to extracting the beacon timestamp field (stable-fixes).
- wifi: mac80211: ethtool: always hold wiphy mutex (bsc#1227149).
- wifi: mac80211: ethtool: hold wiphy mutex (bsc#1227149).
- wifi: mac80211: expand __ieee80211_data_to_8023() status (bsc#1227149).
- wifi: mac80211: extend wiphy lock in interface removal (bsc#1227149).
- wifi: mac80211: fix BA session teardown race (bsc#1227149).
- wifi: mac80211: fix BSS_CHANGED_UNSOL_BCAST_PROBE_RESP (bsc#1227149).
- wifi: mac80211: fix SMPS status handling (bsc#1227149).
- wifi: mac80211: fix TXQ error path and cleanup (bsc#1227149).
- wifi: mac80211: fix UBSAN noise in ieee80211_prep_hw_scan() (stable-fixes).
- wifi: mac80211: fix a expired vs. cancel race in roc (bsc#1227149).
- wifi: mac80211: fix advertised TTLM scheduling (bsc#1227149).
- wifi: mac80211: fix another key installation error path (bsc#1227149).
- wifi: mac80211: fix change_address deadlock during unregister (bsc#1227149).
- wifi: mac80211: fix channel switch link data (bsc#1227149).
- wifi: mac80211: fix driver debugfs for vif type change (bsc#1227149).
- wifi: mac80211: fix error path key leak (bsc#1227149).
- wifi: mac80211: fix header kernel-doc typos (bsc#1227149).
- wifi: mac80211: fix ieee80211_drop_unencrypted_mgmt return type/value (bsc#1227149).
- wifi: mac80211: fix monitor channel with chanctx emulation (bsc#1227149).
- wifi: mac80211: fix potential key leak (bsc#1227149).
- wifi: mac80211: fix spelling typo in comment (bsc#1227149).
- wifi: mac80211: fix unsolicited broadcast probe config (bsc#1227149).
- wifi: mac80211: fix various kernel-doc issues (bsc#1227149).
- wifi: mac80211: fixes in FILS discovery updates (bsc#1227149).
- wifi: mac80211: flush STA queues on unauthorization (bsc#1227149).
- wifi: mac80211: flush wiphy work where appropriate (bsc#1227149).
- wifi: mac80211: handle debugfs when switching to/from MLO (bsc#1227149).
- wifi: mac80211: handle tasklet frames before stopping (stable-fixes).
- wifi: mac80211: hold wiphy lock in netdev/link debugfs (bsc#1227149).
- wifi: mac80211: hold wiphy_lock around concurrency checks (bsc#1227149).
- wifi: mac80211: improve CSA/ECSA connection refusal (bsc#1227149).
- wifi: mac80211: initialize SMPS mode correctly (bsc#1227149).
- wifi: mac80211: lock wiphy for aggregation debugfs (bsc#1227149).
- wifi: mac80211: lock wiphy in IP address notifier (bsc#1227149).
- wifi: mac80211: make mgd_protect_tdls_discover MLO-aware (bsc#1227149).
- wifi: mac80211: mesh: Fix leak of mesh_preq_queue objects (git-fixes).
- wifi: mac80211: mesh: Remove unused function declaration mesh_ids_set_default() (bsc#1227149).
- wifi: mac80211: mesh: fix some kdoc warnings (bsc#1227149).
- wifi: mac80211: mesh: init nonpeer_pm to active by default in mesh sdata (stable-fixes).
- wifi: mac80211: move CSA finalize to wiphy work (bsc#1227149).
- wifi: mac80211: move DFS CAC work to wiphy work (bsc#1227149).
- wifi: mac80211: move TDLS work to wiphy work (bsc#1227149).
- wifi: mac80211: move color change finalize to wiphy work (bsc#1227149).
- wifi: mac80211: move dynamic PS to wiphy work (bsc#1227149).
- wifi: mac80211: move filter reconfig to wiphy work (bsc#1227149).
- wifi: mac80211: move key tailroom work to wiphy work (bsc#1227149).
- wifi: mac80211: move link activation work to wiphy work (bsc#1227149).
- wifi: mac80211: move monitor work to wiphy work (bsc#1227149).
- wifi: mac80211: move tspec work to wiphy work (bsc#1227149).
- wifi: mac80211: process and save negotiated TID to Link mapping request (bsc#1227149).
- wifi: mac80211: purge TX queues in flush_queues flow (bsc#1227149).
- wifi: mac80211: reduce iflist_mtx (bsc#1227149).
- wifi: mac80211: reject MLO channel configuration if not supported (bsc#1227149).
- wifi: mac80211: relax RCU check in for_each_vif_active_link() (bsc#1227149).
- wifi: mac80211: remove RX_DROP_UNUSABLE (bsc#1227149).
- wifi: mac80211: remove ampdu_mlme.mtx (bsc#1227149).
- wifi: mac80211: remove chanctx_mtx (bsc#1227149).
- wifi: mac80211: remove key_mtx (bsc#1227149).
- wifi: mac80211: remove local->mtx (bsc#1227149).
- wifi: mac80211: remove redundant ML element check (bsc#1227149).
- wifi: mac80211: remove shifted rate support (bsc#1227149).
- wifi: mac80211: remove sta_mtx (bsc#1227149).
- wifi: mac80211: remove unnecessary struct forward declaration (bsc#1227149).
- wifi: mac80211: rename ieee80211_tx_status() to ieee80211_tx_status_skb() (bsc#1227149).
- wifi: mac80211: rename struct cfg80211_rx_assoc_resp to cfg80211_rx_assoc_resp_data (bsc#1227149).
- wifi: mac80211: report per-link error during association (bsc#1227149).
- wifi: mac80211: reset negotiated TTLM on disconnect (git-fixes).
- wifi: mac80211: rework RX timestamp flags (bsc#1227149).
- wifi: mac80211: rework ack_frame_id handling a bit (bsc#1227149).
- wifi: mac80211: rx.c: fix sentence grammar (bsc#1227149).
- wifi: mac80211: set wiphy for virtual monitors (bsc#1227149).
- wifi: mac80211: simplify non-chanctx drivers (bsc#1227149).
- wifi: mac80211: split ieee80211_drop_unencrypted_mgmt() return value (bsc#1227149).
- wifi: mac80211: sta_info.c: fix sentence grammar (bsc#1227149).
- wifi: mac80211: support antenna control in injection (bsc#1227149).
- wifi: mac80211: support handling of advertised TID-to-link mapping (bsc#1227149).
- wifi: mac80211: take MBSSID/EHT data also from probe resp (bsc#1227149).
- wifi: mac80211: take wiphy lock for MAC addr change (bsc#1227149).
- wifi: mac80211: tx: clarify conditions in if statement (bsc#1227149).
- wifi: mac80211: update beacon counters per link basis (bsc#1227149).
- wifi: mac80211: update some locking documentation (bsc#1227149).
- wifi: mac80211: update the rx_chains after set_antenna() (bsc#1227149).
- wifi: mac80211: use bandwidth indication element for CSA (bsc#1227149).
- wifi: mac80211: use deflink and fix typo in link ID check (bsc#1227149).
- wifi: mac80211: use wiphy locked debugfs for sdata/link (bsc#1227149).
- wifi: mac80211: use wiphy locked debugfs helpers for agg_status (bsc#1227149).
- wifi: mt7601u: delete dead code checking debugfs returns (bsc#1227149).
- wifi: mt7601u: replace strlcpy() with strscpy() (bsc#1227149).
- wifi: mt76: Annotate struct mt76_rx_tid with __counted_by (bsc#1227149).
- wifi: mt76: Convert to platform remove callback returning void (bsc#1227149).
- wifi: mt76: Remove redundant assignment to variable tidno (bsc#1227149).
- wifi: mt76: Remove unnecessary (void*) conversions (bsc#1227149).
- wifi: mt76: Replace strlcpy() with strscpy() (bsc#1227149).
- wifi: mt76: Use PTR_ERR_OR_ZERO() to simplify code (bsc#1227149).
- wifi: mt76: add DMA mapping error check in mt76_alloc_txwi() (bsc#1227149).
- wifi: mt76: add ability to explicitly forbid LED registration with DT (bsc#1227149).
- wifi: mt76: add support for providing eeprom in nvmem cells (bsc#1227149).
- wifi: mt76: add tx_nss histogram to ethtool stats (bsc#1227149).
- wifi: mt76: change txpower init to per-phy (bsc#1227149).
- wifi: mt76: check sta rx control frame to multibss capability (bsc#1227149).
- wifi: mt76: check txs format before getting skb by pid (bsc#1227149).
- wifi: mt76: check vif type before reporting cca and csa (bsc#1227149).
- wifi: mt76: connac: add MBSSID support for mt7996 (bsc#1227149).
- wifi: mt76: connac: add beacon duplicate TX mode support for mt7996 (bsc#1227149).
- wifi: mt76: connac: add beacon protection support for mt7996 (bsc#1227149).
- wifi: mt76: connac: add connac3 mac library (bsc#1227149).
- wifi: mt76: connac: add data field in struct tlv (bsc#1227149).
- wifi: mt76: connac: add eht support for phy mode config (bsc#1227149).
- wifi: mt76: connac: add eht support for tx power (bsc#1227149).
- wifi: mt76: connac: add firmware support for mt7992 (bsc#1227149).
- wifi: mt76: connac: add more unified command IDs (bsc#1227149).
- wifi: mt76: connac: add more unified event IDs (bsc#1227149).
- wifi: mt76: connac: add new definition of tx descriptor (bsc#1227149).
- wifi: mt76: connac: add support for dsp firmware download (bsc#1227149).
- wifi: mt76: connac: add support to set ifs time by mcu command (bsc#1227149).
- wifi: mt76: connac: add thermal protection support for mt7996 (bsc#1227149).
- wifi: mt76: connac: check for null before dereferencing (bsc#1227149).
- wifi: mt76: connac: export functions for mt7925 (bsc#1227149).
- wifi: mt76: connac: introduce helper for mt7925 chipset (bsc#1227149).
- wifi: mt76: connac: set correct muar_idx for mt799x chipsets (bsc#1227149).
- wifi: mt76: connac: set fixed_bw bit in TX descriptor for fixed rate frames (bsc#1227149).
- wifi: mt76: connac: use muar idx 0xe for non-mt799x as well (bsc#1227149).
- wifi: mt76: disable HW AMSDU when using fixed rate (bsc#1227149).
- wifi: mt76: dma: introduce __mt76_dma_queue_reset utility routine (bsc#1227149).
- wifi: mt76: enable UNII-4 channel 177 support (bsc#1227149).
- wifi: mt76: fix race condition related to checking tx queue fill status (bsc#1227149).
- wifi: mt76: fix the issue of missing txpwr settings from ch153 to ch177 (bsc#1227149).
- wifi: mt76: fix typo in mt76_get_of_eeprom_from_nvmem function (bsc#1227149).
- wifi: mt76: increase MT_QFLAG_WED_TYPE size (bsc#1227149).
- wifi: mt76: introduce mt76_queue_is_wed_tx_free utility routine (bsc#1227149).
- wifi: mt76: introduce wed pointer in mt76_queue (bsc#1227149).
- wifi: mt76: limit support of precal loading for mt7915 to MTD only (bsc#1227149).
- wifi: mt76: make mt76_get_of_eeprom static again (bsc#1227149).
- wifi: mt76: mmio: move mt76_mmio_wed_{init,release}_rx_buf in common code (bsc#1227149).
- wifi: mt76: move ampdu_state in mt76_wcid (bsc#1227149).
- wifi: mt76: move mt76_mmio_wed_offload_{enable,disable} in common code (bsc#1227149).
- wifi: mt76: move mt76_net_setup_tc in common code (bsc#1227149).
- wifi: mt76: move rate info in mt76_vif (bsc#1227149).
- wifi: mt76: move wed reset common code in mt76 module (bsc#1227149).
- wifi: mt76: mt7603: add missing register initialization for MT7628 (bsc#1227149).
- wifi: mt76: mt7603: disable A-MSDU tx support on MT7628 (bsc#1227149).
- wifi: mt76: mt7603: fix beacon interval after disabling a single vif (bsc#1227149).
- wifi: mt76: mt7603: fix tx filter/flush function (bsc#1227149).
- wifi: mt76: mt7603: rely on shared poll_list field (bsc#1227149).
- wifi: mt76: mt7603: rely on shared sta_poll_list and sta_poll_lock (bsc#1227149).
- wifi: mt76: mt7615: add missing chanctx ops (bsc#1227149).
- wifi: mt76: mt7615: enable BSS_CHANGED_MU_GROUPS support (bsc#1227149).
- wifi: mt76: mt7615: rely on shared poll_list field (bsc#1227149).
- wifi: mt76: mt7615: rely on shared sta_poll_list and sta_poll_lock (bsc#1227149).
- wifi: mt76: mt76_connac3: move lmac queue enumeration in mt76_connac3_mac.h (bsc#1227149).
- wifi: mt76: mt76x02: fix return value check in mt76x02_mac_process_rx (bsc#1227149).
- wifi: mt76: mt76x2u: add netgear wdna3100v3 to device table (bsc#1227149).
- wifi: mt76: mt7915 add tc offloading support (bsc#1227149).
- wifi: mt76: mt7915: accumulate mu-mimo ofdma muru stats (bsc#1227149).
- wifi: mt76: mt7915: add locking for accessing mapped registers (bsc#1227149).
- wifi: mt76: mt7915: add missing chanctx ops (bsc#1227149).
- wifi: mt76: mt7915: add support for MT7981 (bsc#1227149).
- wifi: mt76: mt7915: also MT7981 is 3T3R but nss2 on 5 GHz band (bsc#1227149).
- wifi: mt76: mt7915: disable WFDMA Tx/Rx during SER recovery (bsc#1227149).
- wifi: mt76: mt7915: drop return in mt7915_sta_statistics (bsc#1227149).
- wifi: mt76: mt7915: fix EEPROM offset of TSSI flag on MT7981 (bsc#1227149).
- wifi: mt76: mt7915: fix error recovery with WED enabled (bsc#1227149).
- wifi: mt76: mt7915: fix monitor mode issues (bsc#1227149).
- wifi: mt76: mt7915: move mib_stats structure in mt76.h (bsc#1227149).
- wifi: mt76: mt7915: move poll_list in mt76_wcid (bsc#1227149).
- wifi: mt76: mt7915: move sta_poll_list and sta_poll_lock in mt76_dev (bsc#1227149).
- wifi: mt76: mt7915: report tx retries/failed counts for non-WED path (bsc#1227149).
- wifi: mt76: mt7915: update mpdu density capability (bsc#1227149).
- wifi: mt76: mt7915: update mt798x_wmac_adie_patch_7976 (bsc#1227149).
- wifi: mt76: mt7921: Support temp sensor (bsc#1227149).
- wifi: mt76: mt7921: add 6GHz power type support for clc (bsc#1227149).
- wifi: mt76: mt7921: convert acpisar and clc pointers to void (bsc#1227149).
- wifi: mt76: mt7921: enable set txpower for UNII-4 (bsc#1227149).
- wifi: mt76: mt7921: fix 6GHz disabled by the missing default CLC config (bsc#1227149).
- wifi: mt76: mt7921: fix CLC command timeout when suspend/resume (bsc#1227149).
- wifi: mt76: mt7921: fix a potential association failure upon resuming (bsc#1227149).
- wifi: mt76: mt7921: fix kernel panic by accessing invalid 6GHz channel info (bsc#1227149).
- wifi: mt76: mt7921: fix suspend issue on MediaTek COB platform (bsc#1227149).
- wifi: mt76: mt7921: fix the unfinished command of regd_notifier before suspend (bsc#1227149).
- wifi: mt76: mt7921: fix wrong 6Ghz power type (bsc#1227149).
- wifi: mt76: mt7921: get regulatory information from the clc event (bsc#1227149).
- wifi: mt76: mt7921: get rid of MT7921_RESET_TIMEOUT marco (bsc#1227149).
- wifi: mt76: mt7921: make mt7921_mac_sta_poll static (bsc#1227149).
- wifi: mt76: mt7921: move acpi_sar code in mt792x-lib module (bsc#1227149).
- wifi: mt76: mt7921: move common register definition in mt792x_regs.h (bsc#1227149).
- wifi: mt76: mt7921: move connac nic capability handling to mt7921 (bsc#1227149).
- wifi: mt76: mt7921: move debugfs shared code in mt792x-lib module (bsc#1227149).
- wifi: mt76: mt7921: move dma shared code in mt792x-lib module (bsc#1227149).
- wifi: mt76: mt7921: move hif_ops macro in mt792x.h (bsc#1227149).
- wifi: mt76: mt7921: move init shared code in mt792x-lib module (bsc#1227149).
- wifi: mt76: mt7921: move mac shared code in mt792x-lib module (bsc#1227149).
- wifi: mt76: mt7921: move mt7921_dma_init in pci.c (bsc#1227149).
- wifi: mt76: mt7921: move mt7921u_disconnect mt792x-lib (bsc#1227149).
- wifi: mt76: mt7921: move mt792x_hw_dev in mt792x.h (bsc#1227149).
- wifi: mt76: mt7921: move mt792x_mutex_{acquire/release} in mt792x.h (bsc#1227149).
- wifi: mt76: mt7921: move runtime-pm pci code in mt792x-lib (bsc#1227149).
- wifi: mt76: mt7921: move shared runtime-pm code on mt792x-lib (bsc#1227149).
- wifi: mt76: mt7921: reduce the size of MCU firmware download Rx queue (bsc#1227149).
- wifi: mt76: mt7921: rely on mib_stats shared definition (bsc#1227149).
- wifi: mt76: mt7921: rely on shared poll_list field (bsc#1227149).
- wifi: mt76: mt7921: rely on shared sta_poll_list and sta_poll_lock (bsc#1227149).
- wifi: mt76: mt7921: remove macro duplication in regs.h (bsc#1227149).
- wifi: mt76: mt7921: rename mt7921_dev in mt792x_dev (bsc#1227149).
- wifi: mt76: mt7921: rename mt7921_hif_ops in mt792x_hif_ops (bsc#1227149).
- wifi: mt76: mt7921: rename mt7921_phy in mt792x_phy (bsc#1227149).
- wifi: mt76: mt7921: rename mt7921_sta in mt792x_sta (bsc#1227149).
- wifi: mt76: mt7921: rename mt7921_vif in mt792x_vif (bsc#1227149).
- wifi: mt76: mt7921: support 5.9/6GHz channel config in acpi (bsc#1227149).
- wifi: mt76: mt7921: update the channel usage when the regd domain changed (bsc#1227149).
- wifi: mt76: mt7921e: report tx retries/failed counts in tx free event (bsc#1227149).
- wifi: mt76: mt7921s: fix potential hung tasks during chip recovery (stable-fixes).
- wifi: mt76: mt7925: add Mediatek Wi-Fi7 driver for mt7925 chips (bsc#1227149).
- wifi: mt76: mt7925: add flow to avoid chip bt function fail (bsc#1227149).
- wifi: mt76: mt7925: add support to set ifs time by mcu command (bsc#1227149).
- wifi: mt76: mt7925: ensure 4-byte alignment for suspend & wow command (bsc#1227149).
- wifi: mt76: mt7925: fix SAP no beacon issue in 5Ghz and 6Ghz band (bsc#1227149).
- wifi: mt76: mt7925: fix WoW failed in encrypted mode (bsc#1227149).
- wifi: mt76: mt7925: fix connect to 80211b mode fail in 2Ghz band (bsc#1227149).
- wifi: mt76: mt7925: fix fw download fail (bsc#1227149).
- wifi: mt76: mt7925: fix mcu query command fail (bsc#1227149).
- wifi: mt76: mt7925: fix the wrong data type for scan command (bsc#1227149).
- wifi: mt76: mt7925: fix the wrong header translation config (bsc#1227149).
- wifi: mt76: mt7925: fix typo in mt7925_init_he_caps (bsc#1227149).
- wifi: mt76: mt7925: fix wmm queue mapping (bsc#1227149).
- wifi: mt76: mt7925: remove iftype from mt7925_init_eht_caps signature (bsc#1227149).
- wifi: mt76: mt7925: support temperature sensor (bsc#1227149).
- wifi: mt76: mt7925: update PCIe DMA settings (bsc#1227149).
- wifi: mt76: mt7925e: fix use-after-free in free_irq() (bsc#1227149).
- wifi: mt76: mt792x: add the illegal value check for mtcl table of acpi (bsc#1227149).
- wifi: mt76: mt792x: fix ethtool warning (bsc#1227149).
- wifi: mt76: mt792x: introduce mt792x-lib module (bsc#1227149).
- wifi: mt76: mt792x: introduce mt792x-usb module (bsc#1227149).
- wifi: mt76: mt792x: introduce mt792x_irq_map (bsc#1227149).
- wifi: mt76: mt792x: move MT7921_PM_TIMEOUT and MT7921_HW_SCAN_TIMEOUT in common code (bsc#1227149).
- wifi: mt76: mt792x: move more dma shared code in mt792x_dma (bsc#1227149).
- wifi: mt76: mt792x: move mt7921_load_firmware in mt792x-lib module (bsc#1227149).
- wifi: mt76: mt792x: move mt7921_skb_add_usb_sdio_hdr in mt792x module (bsc#1227149).
- wifi: mt76: mt792x: move shared structure definition in mt792x.h (bsc#1227149).
- wifi: mt76: mt792x: move some common usb code in mt792x module (bsc#1227149).
- wifi: mt76: mt792x: support mt7925 chip init (bsc#1227149).
- wifi: mt76: mt792x: update the country list of EU for ACPI SAR (bsc#1227149).
- wifi: mt76: mt792xu: enable dmashdl support (bsc#1227149).
- wifi: mt76: mt7996: Add mcu commands for getting sta tx statistic (bsc#1227149).
- wifi: mt76: mt7996: Use DECLARE_FLEX_ARRAY() and fix -Warray-bounds warnings (bsc#1227149).
- wifi: mt76: mt7996: add DMA support for mt7992 (bsc#1227149).
- wifi: mt76: mt7996: add TX statistics for EHT mode in debugfs (bsc#1227149).
- wifi: mt76: mt7996: add muru support (bsc#1227149).
- wifi: mt76: mt7996: add sanity checks for background radar trigger (stable-fixes).
- wifi: mt76: mt7996: add support for variants with auxiliary RX path (bsc#1227149).
- wifi: mt76: mt7996: add thermal sensor device support (bsc#1227149).
- wifi: mt76: mt7996: add txpower setting support (bsc#1227149).
- wifi: mt76: mt7996: adjust WFDMA settings to improve performance (bsc#1227149).
- wifi: mt76: mt7996: adjust interface num and wtbl size for mt7992 (bsc#1227149).
- wifi: mt76: mt7996: align the format of fixed rate command (bsc#1227149).
- wifi: mt76: mt7996: check txs format before getting skb by pid (bsc#1227149).
- wifi: mt76: mt7996: disable WFDMA Tx/Rx during SER recovery (bsc#1227149).
- wifi: mt76: mt7996: drop return in mt7996_sta_statistics (bsc#1227149).
- wifi: mt76: mt7996: enable BSS_CHANGED_MU_GROUPS support (bsc#1227149).
- wifi: mt76: mt7996: enable PPDU-TxS to host (bsc#1227149).
- wifi: mt76: mt7996: enable VHT extended NSS BW feature (bsc#1227149).
- wifi: mt76: mt7996: ensure 4-byte alignment for beacon commands (bsc#1227149).
- wifi: mt76: mt7996: fix alignment of sta info event (bsc#1227149).
- wifi: mt76: mt7996: fix fortify warning (bsc#1227149).
- wifi: mt76: mt7996: fix fw loading timeout (bsc#1227149).
- wifi: mt76: mt7996: fix mt7996_mcu_all_sta_info_event struct packing (bsc#1227149).
- wifi: mt76: mt7996: fix potential memory leakage when reading chip temperature (bsc#1227149).
- wifi: mt76: mt7996: fix size of txpower MCU command (bsc#1227149).
- wifi: mt76: mt7996: fix uninitialized variable in mt7996_irq_tasklet() (bsc#1227149).
- wifi: mt76: mt7996: fix uninitialized variable in parsing txfree (bsc#1227149).
- wifi: mt76: mt7996: get tx_retries and tx_failed from txfree (bsc#1227149).
- wifi: mt76: mt7996: handle IEEE80211_RC_SMPS_CHANGED (bsc#1227149).
- wifi: mt76: mt7996: increase tx token size (bsc#1227149).
- wifi: mt76: mt7996: introduce mt7996_band_valid() (bsc#1227149).
- wifi: mt76: mt7996: mark GCMP IGTK unsupported (bsc#1227149).
- wifi: mt76: mt7996: move radio ctrl commands to proper functions (bsc#1227149).
- wifi: mt76: mt7996: only set vif teardown cmds at remove interface (bsc#1227149).
- wifi: mt76: mt7996: rely on mib_stats shared definition (bsc#1227149).
- wifi: mt76: mt7996: rely on shared poll_list field (bsc#1227149).
- wifi: mt76: mt7996: rely on shared sta_poll_list and sta_poll_lock (bsc#1227149).
- wifi: mt76: mt7996: remove TXS queue setting (bsc#1227149).
- wifi: mt76: mt7996: remove periodic MPDU TXS request (bsc#1227149).
- wifi: mt76: mt7996: rework ampdu params setting (bsc#1227149).
- wifi: mt76: mt7996: rework register offsets for mt7992 (bsc#1227149).
- wifi: mt76: mt7996: set DMA mask to 36 bits for boards with more than 4GB of RAM (bsc#1227149).
- wifi: mt76: mt7996: support more options for mt7996_set_bitrate_mask() (bsc#1227149).
- wifi: mt76: mt7996: support mt7992 eeprom loading (bsc#1227149).
- wifi: mt76: mt7996: support per-band LED control (bsc#1227149).
- wifi: mt76: mt7996: switch to mcu command for TX GI report (bsc#1227149).
- wifi: mt76: mt7996: use u16 for val field in mt7996_mcu_set_rro signature (bsc#1227149).
- wifi: mt76: permit to load precal from NVMEM cell for mt7915 (bsc#1227149).
- wifi: mt76: permit to use alternative cell name to eeprom NVMEM load (bsc#1227149).
- wifi: mt76: reduce spin_lock_bh held up in mt76_dma_rx_cleanup (bsc#1227149).
- wifi: mt76: replace skb_put with skb_put_zero (stable-fixes).
- wifi: mt76: report non-binding skb tx rate when WED is active (bsc#1227149).
- wifi: mt76: set page_pool napi pointer for mmio devices (bsc#1227149).
- wifi: mt76: split get_of_eeprom in subfunction (bsc#1227149).
- wifi: mt76: usb: create a dedicated queue for psd traffic (bsc#1227149).
- wifi: mt76: usb: store usb endpoint in mt76_queue (bsc#1227149).
- wifi: mt76: use atomic iface iteration for pre-TBTT work (bsc#1227149).
- wifi: mt76: use chainmask for power delta calculation (bsc#1227149).
- wifi: mwifiex: Drop unused headers (bsc#1227149).
- wifi: mwifiex: Fix interface type change (git-fixes).
- wifi: mwifiex: Refactor 1-element array into flexible array in struct mwifiex_ie_types_chan_list_param_set (bsc#1227149).
- wifi: mwifiex: Replace one-element array with flexible-array member in struct mwifiex_ie_types_rxba_sync (bsc#1227149).
- wifi: mwifiex: Set WIPHY_FLAG_NETNS_OK flag (bsc#1227149).
- wifi: mwifiex: Use default @max_active for workqueues (bsc#1227149).
- wifi: mwifiex: Use helpers to check multicast addresses (bsc#1227149).
- wifi: mwifiex: Use list_count_nodes() (bsc#1227149).
- wifi: mwifiex: cleanup adapter data (bsc#1227149).
- wifi: mwifiex: cleanup private data structures (bsc#1227149).
- wifi: mwifiex: cleanup struct mwifiex_sdio_mpa_rx (bsc#1227149).
- wifi: mwifiex: drop BUG_ON from TX paths (bsc#1227149).
- wifi: mwifiex: fix comment typos in SDIO module (bsc#1227149).
- wifi: mwifiex: followup PCIE and related cleanups (bsc#1227149).
- wifi: mwifiex: handle possible mwifiex_write_reg() errors (bsc#1227149).
- wifi: mwifiex: handle possible sscanf() errors (bsc#1227149).
- wifi: mwifiex: mwifiex_process_sleep_confirm_resp(): remove unused priv variable (bsc#1227149).
- wifi: mwifiex: prefer strscpy() over strlcpy() (bsc#1227149).
- wifi: mwifiex: simplify PCIE write operations (bsc#1227149).
- wifi: mwifiex: use MODULE_FIRMWARE to add firmware files metadata (bsc#1227149).
- wifi: mwifiex: use cfg80211_ssid_eq() instead of mwifiex_ssid_cmp() (bsc#1227149).
- wifi: mwifiex: use is_zero_ether_addr() instead of ether_addr_equal() (bsc#1227149).
- wifi: mwifiex: use kstrtoX_from_user() in debugfs handlers (bsc#1227149).
- wifi: nl80211: Avoid address calculations via out of bounds array indexing (git-fixes).
- wifi: nl80211: Extend del pmksa support for SAE and OWE security (bsc#1227149).
- wifi: nl80211: Remove unused declaration nl80211_pmsr_dump_results() (bsc#1227149).
- wifi: nl80211: additions to NL80211_CMD_SET_BEACON (bsc#1227149).
- wifi: nl80211: allow reporting wakeup for unprot deauth/disassoc (bsc#1227149).
- wifi: nl80211: fixes to FILS discovery updates (bsc#1227149).
- wifi: nl80211: refactor nl80211_send_mlme_event() arguments (bsc#1227149).
- wifi: p54: Add missing MODULE_FIRMWARE macro (bsc#1227149).
- wifi: p54: Annotate struct p54_cal_database with __counted_by (bsc#1227149).
- wifi: p54: fix GCC format truncation warning with wiphy->fw_version (bsc#1227149).
- wifi: plfxlc: Drop unused include (bsc#1227149).
- wifi: radiotap: add bandwidth definition of EHT U-SIG (bsc#1227149).
- wifi: remove unused argument of ieee80211_get_tdls_action() (bsc#1227149).
- wifi: rsi: fix restricted __le32 degrades to integer sparse warnings (bsc#1227149).
- wifi: rsi: rsi_91x_coex: Remove unnecessary (void*) conversions (bsc#1227149).
- wifi: rsi: rsi_91x_debugfs: Remove unnecessary (void*) conversions (bsc#1227149).
- wifi: rsi: rsi_91x_hal: Remove unnecessary conversions (bsc#1227149).
- wifi: rsi: rsi_91x_mac80211: Remove unnecessary conversions (bsc#1227149).
- wifi: rsi: rsi_91x_main: Remove unnecessary (void*) conversions (bsc#1227149).
- wifi: rsi: rsi_91x_sdio: Remove unnecessary (void*) conversions (bsc#1227149).
- wifi: rsi: rsi_91x_sdio_ops: Remove unnecessary (void*) conversions (bsc#1227149).
- wifi: rsi: rsi_91x_usb: Remove unnecessary (void*) conversions (bsc#1227149).
- wifi: rsi: rsi_91x_usb_ops: Remove unnecessary (void*) conversions (bsc#1227149).
- wifi: rt2x00: Simplify bool conversion (bsc#1227149).
- wifi: rt2x00: correct MAC_SYS_CTRL register RX mask in R-Calibration (bsc#1227149).
- wifi: rt2x00: disable RTS threshold for rt2800 by default (bsc#1227149).
- wifi: rt2x00: fix MT7620 low RSSI issue (bsc#1227149).
- wifi: rt2x00: fix rt2800 watchdog function (bsc#1227149).
- wifi: rt2x00: fix the typo in comments (bsc#1227149).
- wifi: rt2x00: improve MT7620 register initialization (bsc#1227149).
- wifi: rt2x00: introduce DMA busy check watchdog for rt2800 (bsc#1227149).
- wifi: rt2x00: limit MT7620 TX power based on eeprom calibration (bsc#1227149).
- wifi: rt2x00: make watchdog param per device (bsc#1227149).
- wifi: rt2x00: remove redundant check if u8 array element is less than zero (bsc#1227149).
- wifi: rt2x00: remove useless code in rt2x00queue_create_tx_descriptor() (bsc#1227149).
- wifi: rt2x00: rework MT7620 PA/LNA RF calibration (bsc#1227149).
- wifi: rt2x00: rework MT7620 channel config function (bsc#1227149).
- wifi: rt2x00: silence sparse warnings (bsc#1227149).
- wifi: rt2x00: simplify rt2x00crypto_rx_insert_iv() (bsc#1227149).
- wifi: rtl8xxxu: 8188e: convert usage of priv->vif to priv->vifs[0] (bsc#1227149).
- wifi: rtl8xxxu: 8188f: Limit TX power index (git-fixes).
- wifi: rtl8xxxu: Actually use macid in rtl8xxxu_gen2_report_connect (bsc#1227149).
- wifi: rtl8xxxu: Add TP-Link TL-WN823N V2 (bsc#1227149).
- wifi: rtl8xxxu: Add a description about the device ID 0x7392:0xb722 (bsc#1227149).
- wifi: rtl8xxxu: Add beacon functions (bsc#1227149).
- wifi: rtl8xxxu: Add parameter force to rtl8xxxu_refresh_rate_mask (bsc#1227149).
- wifi: rtl8xxxu: Add parameter macid to update_rate_mask (bsc#1227149).
- wifi: rtl8xxxu: Add parameter role to report_connect (bsc#1227149).
- wifi: rtl8xxxu: Add set_tim() callback (bsc#1227149).
- wifi: rtl8xxxu: Add sta_add() and sta_remove() callbacks (bsc#1227149).
- wifi: rtl8xxxu: Add start_ap() callback (bsc#1227149).
- wifi: rtl8xxxu: Allow creating interface in AP mode (bsc#1227149).
- wifi: rtl8xxxu: Allow setting rts threshold to -1 (bsc#1227149).
- wifi: rtl8xxxu: Clean up filter configuration (bsc#1227149).
- wifi: rtl8xxxu: Declare AP mode support for 8188f (bsc#1227149).
- wifi: rtl8xxxu: Enable AP mode for RTL8192EU (bsc#1227149).
- wifi: rtl8xxxu: Enable AP mode for RTL8192FU (bsc#1227149).
- wifi: rtl8xxxu: Enable AP mode for RTL8710BU (RTL8188GU) (bsc#1227149).
- wifi: rtl8xxxu: Enable AP mode for RTL8723BU (bsc#1227149).
- wifi: rtl8xxxu: Enable hw seq for mgmt/non-QoS data frames (bsc#1227149).
- wifi: rtl8xxxu: Fix LED control code of RTL8192FU (bsc#1227149).
- wifi: rtl8xxxu: Fix off by one initial RTS rate (bsc#1227149).
- wifi: rtl8xxxu: Fix the TX power of RTL8192CU, RTL8723AU (stable-fixes).
- wifi: rtl8xxxu: Put the macid in txdesc (bsc#1227149).
- wifi: rtl8xxxu: Remove usage of ieee80211_get_tx_rate() (bsc#1227149).
- wifi: rtl8xxxu: Remove usage of tx_info->control.rates[0].flags (bsc#1227149).
- wifi: rtl8xxxu: Rename some registers (bsc#1227149).
- wifi: rtl8xxxu: Select correct queue for beacon frames (bsc#1227149).
- wifi: rtl8xxxu: Set maximum number of supported stations (bsc#1227149).
- wifi: rtl8xxxu: Support USB RX aggregation for the newer chips (bsc#1227149).
- wifi: rtl8xxxu: Support new chip RTL8192FU (bsc#1227149).
- wifi: rtl8xxxu: add hw crypto support for AP mode (bsc#1227149).
- wifi: rtl8xxxu: add macids for STA mode (bsc#1227149).
- wifi: rtl8xxxu: add missing number of sec cam entries for all variants (bsc#1227149).
- wifi: rtl8xxxu: check vif before using in rtl8xxxu_tx() (bsc#1227149).
- wifi: rtl8xxxu: convert EN_DESC_ID of TX descriptor to le32 type (bsc#1227149).
- wifi: rtl8xxxu: declare concurrent mode support for 8188f (bsc#1227149).
- wifi: rtl8xxxu: do not parse CFO, if both interfaces are connected in STA mode (bsc#1227149).
- wifi: rtl8xxxu: enable MFP support with security flag of RX descriptor (bsc#1227149).
- wifi: rtl8xxxu: enable channel switch support (bsc#1227149).
- wifi: rtl8xxxu: extend check for matching bssid to both interfaces (bsc#1227149).
- wifi: rtl8xxxu: extend wifi connected check to both interfaces (bsc#1227149).
- wifi: rtl8xxxu: fix error messages (bsc#1227149).
- wifi: rtl8xxxu: fix mixed declarations in rtl8xxxu_set_aifs() (bsc#1227149).
- wifi: rtl8xxxu: make instances of iface limit and combination to be static const (bsc#1227149).
- wifi: rtl8xxxu: make supporting AP mode only on port 0 transparent (bsc#1227149).
- wifi: rtl8xxxu: mark TOTOLINK N150UA V5/N150UA-B as tested (bsc#1227149).
- wifi: rtl8xxxu: prepare supporting two virtual interfaces (bsc#1227149).
- wifi: rtl8xxxu: remove assignment of priv->vif in rtl8xxxu_bss_info_changed() (bsc#1227149).
- wifi: rtl8xxxu: remove obsolete priv->vif (bsc#1227149).
- wifi: rtl8xxxu: rtl8xxxu_rx_complete(): remove unnecessary return (bsc#1227149).
- wifi: rtl8xxxu: support multiple interface in start_ap() (bsc#1227149).
- wifi: rtl8xxxu: support multiple interfaces in bss_info_changed() (bsc#1227149).
- wifi: rtl8xxxu: support multiple interfaces in configure_filter() (bsc#1227149).
- wifi: rtl8xxxu: support multiple interfaces in set_aifs() (bsc#1227149).
- wifi: rtl8xxxu: support multiple interfaces in update_beacon_work_callback() (bsc#1227149).
- wifi: rtl8xxxu: support multiple interfaces in watchdog_callback() (bsc#1227149).
- wifi: rtl8xxxu: support multiple interfaces in {add,remove}_interface() (bsc#1227149).
- wifi: rtl8xxxu: support setting bssid register for multiple interfaces (bsc#1227149).
- wifi: rtl8xxxu: support setting linktype for both interfaces (bsc#1227149).
- wifi: rtl8xxxu: support setting mac address register for both interfaces (bsc#1227149).
- wifi: rtl8xxxu: update rate mask per sta (bsc#1227149).
- wifi: rtlwifi: Convert to use PCIe capability accessors (bsc#1227149).
- wifi: rtlwifi: Ignore IEEE80211_CONF_CHANGE_RETRY_LIMITS (bsc#1227149).
- wifi: rtlwifi: Remove bridge vendor/device ids (bsc#1227149).
- wifi: rtlwifi: Remove rtl_intf_ops.read_efuse_byte (bsc#1227149).
- wifi: rtlwifi: Remove unused PCI related defines and struct (bsc#1227149).
- wifi: rtlwifi: Speed up firmware loading for USB (bsc#1227149).
- wifi: rtlwifi: cleanup USB interface (bsc#1227149).
- wifi: rtlwifi: cleanup few rtlxxx_tx_fill_desc() routines (bsc#1227149).
- wifi: rtlwifi: cleanup few rtlxxxx_set_hw_reg() routines (bsc#1227149).
- wifi: rtlwifi: cleanup struct rtl_hal (bsc#1227149).
- wifi: rtlwifi: cleanup struct rtl_phy (bsc#1227149).
- wifi: rtlwifi: cleanup struct rtl_ps_ctl (bsc#1227149).
- wifi: rtlwifi: drop chk_switch_dmdp() from HAL interface (bsc#1227149).
- wifi: rtlwifi: drop fill_fake_txdesc() from HAL interface (bsc#1227149).
- wifi: rtlwifi: drop pre_fill_tx_bd_desc() from HAL interface (bsc#1227149).
- wifi: rtlwifi: drop unused const_amdpci_aspm (bsc#1227149).
- wifi: rtlwifi: remove misused flag from HAL data (bsc#1227149).
- wifi: rtlwifi: remove unreachable code in rtl92d_dm_check_edca_turbo() (bsc#1227149).
- wifi: rtlwifi: remove unused dualmac control leftovers (bsc#1227149).
- wifi: rtlwifi: remove unused timer and related code (bsc#1227149).
- wifi: rtlwifi: rtl8192cu: Fix 2T2R chip type detection (bsc#1227149).
- wifi: rtlwifi: rtl8192cu: Fix TX aggregation (bsc#1227149).
- wifi: rtlwifi: rtl8192de: Do not read register in _rtl92de_query_rxphystatus (bsc#1227149).
- wifi: rtlwifi: rtl8192de: Fix 5 GHz TX power (stable-fixes).
- wifi: rtlwifi: rtl8192de: Fix endianness issue in RX path (stable-fixes).
- wifi: rtlwifi: rtl8192de: Fix low speed with WPA3-SAE (stable-fixes).
- wifi: rtlwifi: rtl8723: Remove unused function rtl8723_cmd_send_packet() (bsc#1227149).
- wifi: rtlwifi: rtl8821ae: Access full PMCS reg and use pci_regs.h (bsc#1227149).
- wifi: rtlwifi: rtl8821ae: Add pdev into _rtl8821ae_clear_pci_pme_status() (bsc#1227149).
- wifi: rtlwifi: rtl8821ae: Remove unnecessary PME_Status bit set (bsc#1227149).
- wifi: rtlwifi: rtl8821ae: Reverse PM Capability exists check (bsc#1227149).
- wifi: rtlwifi: rtl8821ae: Use pci_find_capability() (bsc#1227149).
- wifi: rtlwifi: rtl8821ae: phy: remove some useless code (bsc#1227149).
- wifi: rtlwifi: rtl8821ae: phy: using calculate_bit_shift() (bsc#1227149).
- wifi: rtlwifi: rtl92ee_dm_dynamic_primary_cca_check(): fix typo in function name (bsc#1227149).
- wifi: rtlwifi: rtl_usb: Store the endpoint addresses (bsc#1227149).
- wifi: rtlwifi: rtl_usb: Use sync register writes (bsc#1227149).
- wifi: rtlwifi: set initial values for unexpected cases of USB endpoint priority (bsc#1227149).
- wifi: rtlwifi: simplify LED management (bsc#1227149).
- wifi: rtlwifi: simplify TX command fill callbacks (bsc#1227149).
- wifi: rtlwifi: simplify rtl_action_proc() and rtl_tx_agg_start() (bsc#1227149).
- wifi: rtlwifi: use convenient list_count_nodes() (bsc#1227149).
- wifi: rtlwifi: use eth_broadcast_addr() to assign broadcast address (bsc#1227149).
- wifi: rtlwifi: use helper function rtl_get_hdr() (bsc#1227149).
- wifi: rtlwifi: use unsigned long for bt_coexist_8723 timestamp (bsc#1227149).
- wifi: rtlwifi: use unsigned long for rtl_bssid_entry timestamp (bsc#1227149).
- wifi: rtw88: 8821c: tweak CCK TX filter setting for SRRC regulation (bsc#1227149).
- wifi: rtw88: 8821c: update TX power limit to V67 (bsc#1227149).
- wifi: rtw88: 8822c: update TX power limit to V70 (bsc#1227149).
- wifi: rtw88: 8822ce: refine power parameters for RFE type 5 (bsc#1227149).
- wifi: rtw88: Add support for the SDIO based RTL8723DS chipset (bsc#1227149).
- wifi: rtw88: Fix AP mode incorrect DTIM behavior (bsc#1227149).
- wifi: rtw88: Fix action frame transmission fail before association (bsc#1227149).
- wifi: rtw88: Skip high queue in hci_flush (bsc#1227149).
- wifi: rtw88: Stop high queue during scan (bsc#1227149).
- wifi: rtw88: Use random MAC when efuse MAC invalid (bsc#1227149).
- wifi: rtw88: add missing unwind goto for __rtw_download_firmware() (bsc#1227149).
- wifi: rtw88: debug: add to check if debug mask is enabled (bsc#1227149).
- wifi: rtw88: debug: remove wrapper of rtw_dbg() (bsc#1227149).
- wifi: rtw88: dump firmware debug information in abnormal state (bsc#1227149).
- wifi: rtw88: fix incorrect error codes in rtw_debugfs_copy_from_user (bsc#1227149).
- wifi: rtw88: fix incorrect error codes in rtw_debugfs_set_* (bsc#1227149).
- wifi: rtw88: fix not entering PS mode after AP stops (bsc#1227149).
- wifi: rtw88: fix typo rtw8822cu_probe (bsc#1227149).
- wifi: rtw88: process VO packets without workqueue to avoid PTK rekey failed (bsc#1227149).
- wifi: rtw88: refine register based H2C command (bsc#1227149).
- wifi: rtw88: regd: configure QATAR and UK (bsc#1227149).
- wifi: rtw88: regd: update regulatory map to R64-R42 (bsc#1227149).
- wifi: rtw88: remove unused USB bulkout size set (bsc#1227149).
- wifi: rtw88: remove unused and set but unused leftovers (bsc#1227149).
- wifi: rtw88: rtw8723d: Implement RTL8723DS (SDIO) efuse parsing (bsc#1227149).
- wifi: rtw88: simplify __rtw_tx_work() (bsc#1227149).
- wifi: rtw88: simplify vif iterators (bsc#1227149).
- wifi: rtw88: use cfg80211_ssid_eq() instead of rtw_ssid_equal() (bsc#1227149).
- wifi: rtw88: use kstrtoX_from_user() in debugfs handlers (bsc#1227149).
- wifi: rtw88: use struct instead of macros to set TX desc (bsc#1227149).
- wifi: rtw89: 52c: rfk: disable DPK during MCC (bsc#1227149).
- wifi: rtw89: 52c: rfk: refine MCC channel info notification (bsc#1227149).
- wifi: rtw89: 8851b: add 8851B basic chip_info (bsc#1227149).
- wifi: rtw89: 8851b: add 8851be to Makefile and Kconfig (bsc#1227149).
- wifi: rtw89: 8851b: add BT coexistence support function (bsc#1227149).
- wifi: rtw89: 8851b: add DLE mem and HFC quota (bsc#1227149).
- wifi: rtw89: 8851b: add MAC configurations to chip_info (bsc#1227149).
- wifi: rtw89: 8851b: add NCTL post table (bsc#1227149).
- wifi: rtw89: 8851b: add RF configurations (bsc#1227149).
- wifi: rtw89: 8851b: add TX power related functions (bsc#1227149).
- wifi: rtw89: 8851b: add basic power on function (bsc#1227149).
- wifi: rtw89: 8851b: add set channel function (bsc#1227149).
- wifi: rtw89: 8851b: add set_channel_rf() (bsc#1227149).
- wifi: rtw89: 8851b: add support WoWLAN to 8851B (bsc#1227149).
- wifi: rtw89: 8851b: add to parse efuse content (bsc#1227149).
- wifi: rtw89: 8851b: add to read efuse version to recognize hardware version B (bsc#1227149).
- wifi: rtw89: 8851b: configure CRASH_TRIGGER feature for 8851B (bsc#1227149).
- wifi: rtw89: 8851b: configure GPIO according to RFE type (bsc#1227149).
- wifi: rtw89: 8851b: configure to force 1 TX power value (bsc#1227149).
- wifi: rtw89: 8851b: enable hw_scan support (bsc#1227149).
- wifi: rtw89: 8851b: fill BB related capabilities to chip_info (bsc#1227149).
- wifi: rtw89: 8851b: rfk: Fix spelling mistake KIP_RESOTRE -> KIP_RESTORE (bsc#1227149).
- wifi: rtw89: 8851b: rfk: add AACK (bsc#1227149).
- wifi: rtw89: 8851b: rfk: add DACK (bsc#1227149).
- wifi: rtw89: 8851b: rfk: add DPK (bsc#1227149).
- wifi: rtw89: 8851b: rfk: add IQK (bsc#1227149).
- wifi: rtw89: 8851b: rfk: add LCK track (bsc#1227149).
- wifi: rtw89: 8851b: rfk: add RCK (bsc#1227149).
- wifi: rtw89: 8851b: rfk: add RX DCK (bsc#1227149).
- wifi: rtw89: 8851b: rfk: add TSSI (bsc#1227149).
- wifi: rtw89: 8851b: rfk: update IQK to version 0x8 (bsc#1227149).
- wifi: rtw89: 8851b: update RF radio A parameters to R28 (bsc#1227149).
- wifi: rtw89: 8851b: update TX power tables to R28 (bsc#1227149).
- wifi: rtw89: 8851b: update TX power tables to R34 (bsc#1227149).
- wifi: rtw89: 8851b: update TX power tables to R37 (bsc#1227149).
- wifi: rtw89: 8851be: add 8851BE PCI entry and fill PCI capabilities (bsc#1227149).
- wifi: rtw89: 8852b: fix definition of KIP register number (git-fixes).
- wifi: rtw89: 8852b: update TX power tables to R35 (bsc#1227149).
- wifi: rtw89: 8852b: update TX power tables to R36 (bsc#1227149).
- wifi: rtw89: 8852c: Fix TSSI causes transmit power inaccuracy (bsc#1227149).
- wifi: rtw89: 8852c: Update bandedge parameters for better performance (bsc#1227149).
- wifi: rtw89: 8852c: add quirk to set PCI BER for certain platforms (bsc#1227149).
- wifi: rtw89: 8852c: declare to support two chanctx (bsc#1227149).
- wifi: rtw89: 8852c: read RX gain offset from efuse for 6GHz channels (bsc#1227149).
- wifi: rtw89: 8852c: update RF radio A/B parameters to R63 (bsc#1227149).
- wifi: rtw89: 8852c: update TX power tables to R63 with 6 GHz power type (1 of 3) (bsc#1227149).
- wifi: rtw89: 8852c: update TX power tables to R63 with 6 GHz power type (2 of 3) (bsc#1227149).
- wifi: rtw89: 8852c: update TX power tables to R63 with 6 GHz power type (3 of 3) (bsc#1227149).
- wifi: rtw89: 8852c: update TX power tables to R67 (bsc#1227149).
- wifi: rtw89: 8922a: add 8922A basic chip info (bsc#1227149).
- wifi: rtw89: 8922a: add BTG functions to assist BT coexistence to control TX/RX (bsc#1227149).
- wifi: rtw89: 8922a: add NCTL pre-settings for WiFi 7 chips (bsc#1227149).
- wifi: rtw89: 8922a: add RF read/write v2 (bsc#1227149).
- wifi: rtw89: 8922a: add SER IMR tables (bsc#1227149).
- wifi: rtw89: 8922a: add TX power related ops (bsc#1227149).
- wifi: rtw89: 8922a: add chip_ops related to BB init (bsc#1227149).
- wifi: rtw89: 8922a: add chip_ops to get thermal value (bsc#1227149).
- wifi: rtw89: 8922a: add chip_ops::bb_preinit to enable BB before downloading firmware (bsc#1227149).
- wifi: rtw89: 8922a: add chip_ops::cfg_txrx_path (bsc#1227149).
- wifi: rtw89: 8922a: add chip_ops::rfk_hw_init (bsc#1227149).
- wifi: rtw89: 8922a: add chip_ops::rfk_init_late to do initial RF calibrations later (bsc#1227149).
- wifi: rtw89: 8922a: add chip_ops::{enable,disable}_bb_rf (bsc#1227149).
- wifi: rtw89: 8922a: add coexistence helpers of SW grant (bsc#1227149).
- wifi: rtw89: 8922a: add helper of set_channel (bsc#1227149).
- wifi: rtw89: 8922a: add ieee80211_ops::hw_scan (bsc#1227149).
- wifi: rtw89: 8922a: add more fields to beacon H2C command to support multi-links (bsc#1227149).
- wifi: rtw89: 8922a: add power on/off functions (bsc#1227149).
- wifi: rtw89: 8922a: add register definitions of H2C, C2H, page, RRSR and EDCCA (bsc#1227149).
- wifi: rtw89: 8922a: add set_channel BB part (bsc#1227149).
- wifi: rtw89: 8922a: add set_channel MAC part (bsc#1227149).
- wifi: rtw89: 8922a: add set_channel RF part (bsc#1227149).
- wifi: rtw89: 8922a: configure CRASH_TRIGGER FW feature (bsc#1227149).
- wifi: rtw89: 8922a: correct register definition and merge IO for ctrl_nbtg_bt_tx() (bsc#1227149).
- wifi: rtw89: 8922a: declare to support two chanctx (bsc#1227149).
- wifi: rtw89: 8922a: dump MAC registers when SER occurs (bsc#1227149).
- wifi: rtw89: 8922a: extend and add quota number (bsc#1227149).
- wifi: rtw89: 8922a: hook handlers of TX/RX descriptors to chip_ops (bsc#1227149).
- wifi: rtw89: 8922a: implement AP mode related reg for BE generation (bsc#1227149).
- wifi: rtw89: 8922a: implement {stop,resume}_sch_tx and cfg_ppdu (bsc#1227149).
- wifi: rtw89: 8922a: read efuse content from physical map (bsc#1227149).
- wifi: rtw89: 8922a: read efuse content via efuse map struct from logic map (bsc#1227149).
- wifi: rtw89: 8922a: rfk: implement chip_ops to call RF calibrations (bsc#1227149).
- wifi: rtw89: 8922a: set RX gain along with set_channel operation (bsc#1227149).
- wifi: rtw89: 8922a: set chip_ops FEM and GPIO to NULL (bsc#1227149).
- wifi: rtw89: 8922a: set memory heap address for secure firmware (bsc#1227149).
- wifi: rtw89: 8922a: update BA CAM number to 24 (bsc#1227149).
- wifi: rtw89: 8922a: update the register used in DIG and the DIG flow (bsc#1227149).
- wifi: rtw89: 8922ae: add 8922AE PCI entry and basic info (bsc#1227149).
- wifi: rtw89: 8922ae: add v2 interrupt handlers for 8922AE (bsc#1227149).
- wifi: rtw89: Add EHT rate mask as parameters of RA H2C command (bsc#1227149).
- wifi: rtw89: Fix array index mistake in rtw89_sta_info_get_iter() (git-fixes).
- wifi: rtw89: Fix clang -Wimplicit-fallthrough in rtw89_query_sar() (bsc#1227149).
- wifi: rtw89: Introduce Time Averaged SAR (TAS) feature (bsc#1227149).
- wifi: rtw89: Refine active scan behavior in 6 GHz (bsc#1227149).
- wifi: rtw89: Set default CQM config if not present (bsc#1227149).
- wifi: rtw89: TX power stuffs replace confusing naming of _max with _num (bsc#1227149).
- wifi: rtw89: Update EHT PHY beamforming capability (bsc#1227149).
- wifi: rtw89: acpi: process 6 GHz band policy from DSM (bsc#1227149).
- wifi: rtw89: add C2H RA event V1 to support WiFi 7 chips (bsc#1227149).
- wifi: rtw89: add C2H event handlers of RFK log and report (bsc#1227149).
- wifi: rtw89: add CFO XTAL registers field to support 8851B (bsc#1227149).
- wifi: rtw89: add DBCC H2C to notify firmware the status (bsc#1227149).
- wifi: rtw89: add EHT capabilities for WiFi 7 chips (bsc#1227149).
- wifi: rtw89: add EHT radiotap in monitor mode (bsc#1227149).
- wifi: rtw89: add EVM and SNR statistics to debugfs (bsc#1227149).
- wifi: rtw89: add EVM for antenna diversity (bsc#1227149).
- wifi: rtw89: add H2C RA command V1 to support WiFi 7 chips (bsc#1227149).
- wifi: rtw89: add H2C command to download beacon frame for WiFi 7 chips (bsc#1227149).
- wifi: rtw89: add RSSI based antenna diversity (bsc#1227149).
- wifi: rtw89: add RSSI statistics for the case of antenna diversity to debugfs (bsc#1227149).
- wifi: rtw89: add XTAL SI for WiFi 7 chips (bsc#1227149).
- wifi: rtw89: add chip_info::chip_gen to determine chip generation (bsc#1227149).
- wifi: rtw89: add chip_info::txwd_info size to generalize TX WD submit (bsc#1227149).
- wifi: rtw89: add chip_ops::h2c_ba_cam() to configure BA CAM (bsc#1227149).
- wifi: rtw89: add chip_ops::query_rxdesc() and rxd_len as helpers to support newer chips (bsc#1227149).
- wifi: rtw89: add chip_ops::update_beacon to abstract update beacon operation (bsc#1227149).
- wifi: rtw89: add firmware H2C command of BA CAM V1 (bsc#1227149).
- wifi: rtw89: add firmware parser for v1 format (bsc#1227149).
- wifi: rtw89: add firmware suit for BB MCU 0/1 (bsc#1227149).
- wifi: rtw89: add function prototype for coex request duration (bsc#1227149).
- wifi: rtw89: add mac_gen pointer to access mac port registers (bsc#1227149).
- wifi: rtw89: add mlo_dbcc_mode for WiFi 7 chips (bsc#1227149).
- wifi: rtw89: add new H2C command to pause/sleep transmitting by MAC ID (bsc#1227149).
- wifi: rtw89: add new H2C for PS mode in 802.11be chip (bsc#1227149).
- wifi: rtw89: add reserved size as factor of DLE used size (bsc#1227149).
- wifi: rtw89: add subband index of primary channel to struct rtw89_chan (bsc#1227149).
- wifi: rtw89: add to display hardware rates v1 histogram in debugfs (bsc#1227149).
- wifi: rtw89: add to fill TX descriptor for firmware command v2 (bsc#1227149).
- wifi: rtw89: add to fill TX descriptor v2 (bsc#1227149).
- wifi: rtw89: add to parse firmware elements of BB and RF tables (bsc#1227149).
- wifi: rtw89: add to query RX descriptor format v2 (bsc#1227149).
- wifi: rtw89: add tx_wake notify for 8851B (bsc#1227149).
- wifi: rtw89: add wait/completion for abort scan (bsc#1227149).
- wifi: rtw89: adjust init_he_cap() to add EHT cap into iftype_data (bsc#1227149).
- wifi: rtw89: advertise missing extended scan feature (bsc#1227149).
- wifi: rtw89: avoid stringop-overflow warning (bsc#1227149).
- wifi: rtw89: call rtw89_chan_get() by vif chanctx if aware of vif (bsc#1227149).
- wifi: rtw89: chan: MCC take reconfig into account (bsc#1227149).
- wifi: rtw89: chan: add sub-entity swap function to cover replacing (bsc#1227149).
- wifi: rtw89: chan: move handling from add/remove to assign/unassign for MLO (bsc#1227149).
- wifi: rtw89: chan: support MCC on Wi-Fi 7 chips (bsc#1227149).
- wifi: rtw89: chan: tweak bitmap recalc ahead before MLO (bsc#1227149).
- wifi: rtw89: chan: tweak weight recalc ahead before MLO (bsc#1227149).
- wifi: rtw89: change naming of BA CAM from V1 to V0_EXT (bsc#1227149).
- wifi: rtw89: change qutoa to DBCC by default for WiFi 7 chips (bsc#1227149).
- wifi: rtw89: change supported bandwidths of chip_info to bit mask (bsc#1227149).
- wifi: rtw89: cleanup firmware elements parsing (bsc#1227149).
- wifi: rtw89: cleanup private data structures (bsc#1227149).
- wifi: rtw89: cleanup rtw89_iqk_info and related code (bsc#1227149).
- wifi: rtw89: coex: Add Bluetooth RSSI level information (bsc#1227149).
- wifi: rtw89: coex: Add Pre-AGC control to enhance Wi-Fi RX performance (bsc#1227149).
- wifi: rtw89: coex: Add coexistence policy to decrease WiFi packet CRC-ERR (bsc#1227149).
- wifi: rtw89: coex: Fix wrong Wi-Fi role info and FDDT parameter members (bsc#1227149).
- wifi: rtw89: coex: Record down Wi-Fi initial mode information (bsc#1227149).
- wifi: rtw89: coex: Reorder H2C command index to align with firmware (bsc#1227149).
- wifi: rtw89: coex: Set Bluetooth scan low-priority when Wi-Fi link/scan (bsc#1227149).
- wifi: rtw89: coex: Still show hardware grant signal info even Wi-Fi is PS (bsc#1227149).
- wifi: rtw89: coex: To improve Wi-Fi performance while BT is idle (bsc#1227149).
- wifi: rtw89: coex: Translate antenna configuration from ID to string (bsc#1227149).
- wifi: rtw89: coex: Update BTG control related logic (bsc#1227149).
- wifi: rtw89: coex: Update RF parameter control setting logic (bsc#1227149).
- wifi: rtw89: coex: Update coexistence policy for Wi-Fi LPS (bsc#1227149).
- wifi: rtw89: coex: When Bluetooth not available do not set power/gain (bsc#1227149).
- wifi: rtw89: coex: add BTC ctrl_info version 7 and related logic (bsc#1227149).
- wifi: rtw89: coex: add annotation __counted_by() for struct rtw89_btc_btf_set_slot_table (bsc#1227149).
- wifi: rtw89: coex: add annotation __counted_by() to struct rtw89_btc_btf_set_mon_reg (bsc#1227149).
- wifi: rtw89: coex: add init_info H2C command format version 7 (bsc#1227149).
- wifi: rtw89: coex: add return value to ensure H2C command is success or not (bsc#1227149).
- wifi: rtw89: coex: fix configuration for shared antenna for 8922A (bsc#1227149).
- wifi: rtw89: coex: use struct assignment to replace memcpy() to append TDMA content (bsc#1227149).
- wifi: rtw89: configure PPDU max user by chip (bsc#1227149).
- wifi: rtw89: consider RX info for WiFi 7 chips (bsc#1227149).
- wifi: rtw89: consolidate registers of mac port to struct (bsc#1227149).
- wifi: rtw89: correct PHY register offset for PHY-1 (bsc#1227149).
- wifi: rtw89: correct aSIFSTime for 6GHz band (stable-fixes).
- wifi: rtw89: correct the DCFO tracking flow to improve CFO compensation (bsc#1227149).
- wifi: rtw89: debug: add FW log component for scan (bsc#1227149).
- wifi: rtw89: debug: add debugfs entry to disable dynamic mechanism (bsc#1227149).
- wifi: rtw89: debug: add to check if debug mask is enabled (bsc#1227149).
- wifi: rtw89: debug: remove wrapper of rtw89_debug() (bsc#1227149).
- wifi: rtw89: debug: show txpwr table according to chip gen (bsc#1227149).
- wifi: rtw89: debug: txpwr table access only valid page according to chip (bsc#1227149).
- wifi: rtw89: debug: txpwr table supports Wi-Fi 7 chips (bsc#1227149).
- wifi: rtw89: declare EXT NSS BW of VHT capability (bsc#1227149).
- wifi: rtw89: declare MCC in interface combination (bsc#1227149).
- wifi: rtw89: define hardware rate v1 for WiFi 7 chips (bsc#1227149).
- wifi: rtw89: differentiate narrow_bw_ru_dis setting according to chip gen (bsc#1227149).
- wifi: rtw89: disable RTS when broadcast/multicast (bsc#1227149).
- wifi: rtw89: download firmware with five times retry (bsc#1227149).
- wifi: rtw89: drop TIMING_BEACON_ONLY and sync beacon TSF by self (bsc#1227149).
- wifi: rtw89: enlarge supported length of read_reg debugfs entry (bsc#1227149).
- wifi: rtw89: extend PHY status parser to support WiFi 7 chips (bsc#1227149).
- wifi: rtw89: fix HW scan not aborting properly (git-fixes).
- wifi: rtw89: fix HW scan timeout due to TSF sync issue (bsc#1227149).
- wifi: rtw89: fix a width vs precision bug (bsc#1227149).
- wifi: rtw89: fix disabling concurrent mode TX hang issue (bsc#1227149).
- wifi: rtw89: fix misbehavior of TX beacon in concurrent mode (bsc#1227149).
- wifi: rtw89: fix not entering PS mode after AP stops (bsc#1227149).
- wifi: rtw89: fix spelling typo of IQK debug messages (bsc#1227149).
- wifi: rtw89: fix typo of rtw89_fw_h2c_mcc_macid_bitmap() (bsc#1227149).
- wifi: rtw89: fw: add H2C command to reset CMAC table for WiFi 7 (bsc#1227149).
- wifi: rtw89: fw: add H2C command to reset DMAC table for WiFi 7 (bsc#1227149).
- wifi: rtw89: fw: add H2C command to update security CAM v2 (bsc#1227149).
- wifi: rtw89: fw: add checking type for variant type of firmware (bsc#1227149).
- wifi: rtw89: fw: add chip_ops to update CMAC table to associated station (bsc#1227149).
- wifi: rtw89: fw: add definition of H2C command and C2H event for MRC series (bsc#1227149).
- wifi: rtw89: fw: add version field to BB MCU firmware element (bsc#1227149).
- wifi: rtw89: fw: consider checksum length of security data (bsc#1227149).
- wifi: rtw89: fw: download firmware with key data for secure boot (bsc#1227149).
- wifi: rtw89: fw: extend JOIN H2C command to support WiFi 7 chips (bsc#1227149).
- wifi: rtw89: fw: extend program counter dump for Wi-Fi 7 chip (bsc#1227149).
- wifi: rtw89: fw: fill CMAC table to associated station for WiFi 7 chips (bsc#1227149).
- wifi: rtw89: fw: generalize download firmware flow by mac_gen pointers (bsc#1227149).
- wifi: rtw89: fw: implement MRC H2C command functions (bsc#1227149).
- wifi: rtw89: fw: implement supported functions of download firmware for WiFi 7 chips (bsc#1227149).
- wifi: rtw89: fw: load TX power track tables from fw_element (bsc#1227149).
- wifi: rtw89: fw: move polling function of firmware path ready to an individual function (bsc#1227149).
- wifi: rtw89: fw: parse secure section from firmware file (bsc#1227149).
- wifi: rtw89: fw: propagate an argument include_bb for BB MCU firmware (bsc#1227149).
- wifi: rtw89: fw: read firmware secure information from efuse (bsc#1227149).
- wifi: rtw89: fw: refine download flow to support variant firmware suits (bsc#1227149).
- wifi: rtw89: fw: scan offload prohibit all 6 GHz channel if no 6 GHz sband (bsc#1227149).
- wifi: rtw89: fw: update TX AMPDU parameter to CMAC table (bsc#1227149).
- wifi: rtw89: fw: use struct to fill BA CAM H2C commands (bsc#1227149).
- wifi: rtw89: fw: use struct to fill JOIN H2C command (bsc#1227149).
- wifi: rtw89: get data rate mode/NSS/MCS v1 from RX descriptor (bsc#1227149).
- wifi: rtw89: indicate TX power by rate table inside RFE parameter (bsc#1227149).
- wifi: rtw89: indicate TX shape table inside RFE parameter (bsc#1227149).
- wifi: rtw89: initialize antenna for antenna diversity (bsc#1227149).
- wifi: rtw89: initialize multi-channel handling (bsc#1227149).
- wifi: rtw89: introduce infrastructure of firmware elements (bsc#1227149).
- wifi: rtw89: introduce realtek ACPI DSM method (bsc#1227149).
- wifi: rtw89: introduce v1 format of firmware header (bsc#1227149).
- wifi: rtw89: load BB parameters to PHY-1 (bsc#1227149).
- wifi: rtw89: load RFK log format string from firmware file (bsc#1227149).
- wifi: rtw89: load TX power by rate when RFE parms setup (bsc#1227149).
- wifi: rtw89: load TX power related tables from FW elements (bsc#1227149).
- wifi: rtw89: mac: Fix spelling mistakes 'notfify' -> 'notify' (bsc#1227149).
- wifi: rtw89: mac: add coexistence helpers {cfg/get}_plt (bsc#1227149).
- wifi: rtw89: mac: add feature_init to initialize BA CAM V1 (bsc#1227149).
- wifi: rtw89: mac: add flags to check if CMAC and DMAC are enabled (bsc#1227149).
- wifi: rtw89: mac: add mac_gen_def::band1_offset to map MAC band1 register address (bsc#1227149).
- wifi: rtw89: mac: add registers of MU-EDCA parameters for WiFi 7 chips (bsc#1227149).
- wifi: rtw89: mac: add suffix _ax to MAC functions (bsc#1227149).
- wifi: rtw89: mac: add sys_init and filter option for WiFi 7 chips (bsc#1227149).
- wifi: rtw89: mac: add to access efuse for WiFi 7 chips (bsc#1227149).
- wifi: rtw89: mac: add to get DLE reserved quota (bsc#1227149).
- wifi: rtw89: mac: check queue empty according to chip gen (bsc#1227149).
- wifi: rtw89: mac: correct MUEDCA setting for MAC-1 (bsc#1227149).
- wifi: rtw89: mac: define internal memory address for WiFi 7 chip (bsc#1227149).
- wifi: rtw89: mac: define register address of rx_filter to generalize code (bsc#1227149).
- wifi: rtw89: mac: do bf_monitor only if WiFi 6 chips (bsc#1227149).
- wifi: rtw89: mac: functions to configure hardware engine and quota for WiFi 7 chips (bsc#1227149).
- wifi: rtw89: mac: generalize code to indirectly access WiFi internal memory (bsc#1227149).
- wifi: rtw89: mac: generalize register of MU-EDCA switch according to chip gen (bsc#1227149).
- wifi: rtw89: mac: get TX power control register according to chip gen (bsc#1227149).
- wifi: rtw89: mac: handle C2H receive/done ACK in interrupt context (bsc#1227149).
- wifi: rtw89: mac: implement MRC C2H event handling (bsc#1227149).
- wifi: rtw89: mac: implement to configure TX/RX engines for WiFi 7 chips (bsc#1227149).
- wifi: rtw89: mac: move code related to hardware engine to individual functions (bsc#1227149).
- wifi: rtw89: mac: refine SER setting during WiFi CPU power on (bsc#1227149).
- wifi: rtw89: mac: reset PHY-1 hardware when going to enable/disable (bsc#1227149).
- wifi: rtw89: mac: return held quota of DLE when changing MAC-1 (bsc#1227149).
- wifi: rtw89: mac: set bf_assoc capabilities according to chip gen (bsc#1227149).
- wifi: rtw89: mac: set bfee_ctrl() according to chip gen (bsc#1227149).
- wifi: rtw89: mac: update RTS threshold according to chip gen (bsc#1227149).
- wifi: rtw89: mac: use mac_gen pointer to access about efuse (bsc#1227149).
- wifi: rtw89: mac: use pointer to access functions of hardware engine and quota (bsc#1227149).
- wifi: rtw89: mcc: consider and determine BT duration (bsc#1227149).
- wifi: rtw89: mcc: deal with BT slot change (bsc#1227149).
- wifi: rtw89: mcc: deal with P2P PS change (bsc#1227149).
- wifi: rtw89: mcc: deal with beacon NoA if GO exists (bsc#1227149).
- wifi: rtw89: mcc: decide pattern and calculate parameters (bsc#1227149).
- wifi: rtw89: mcc: fill fundamental configurations (bsc#1227149).
- wifi: rtw89: mcc: fix NoA start time when GO is auxiliary (bsc#1227149).
- wifi: rtw89: mcc: initialize start flow (bsc#1227149).
- wifi: rtw89: mcc: track beacon offset and update when needed (bsc#1227149).
- wifi: rtw89: mcc: trigger FW to start/stop MCC (bsc#1227149).
- wifi: rtw89: mcc: update role bitmap when changed (bsc#1227149).
- wifi: rtw89: modify the register setting and the flow of CFO tracking (bsc#1227149).
- wifi: rtw89: move software DCFO compensation setting to proper position (bsc#1227149).
- wifi: rtw89: only reset BB/RF for existing WiFi 6 chips while starting up (bsc#1227149).
- wifi: rtw89: packet offload wait for FW response (bsc#1227149).
- wifi: rtw89: parse EHT information from RX descriptor and PPDU status packet (bsc#1227149).
- wifi: rtw89: parse TX EHT rate selected by firmware from RA C2H report (bsc#1227149).
- wifi: rtw89: parse and print out RFK log from C2H events (bsc#1227149).
- wifi: rtw89: pause/proceed MCC for ROC and HW scan (bsc#1227149).
- wifi: rtw89: pci: add LTR v2 for WiFi 7 chip (bsc#1227149).
- wifi: rtw89: pci: add PCI generation information to pci_info for each chip (bsc#1227149).
- wifi: rtw89: pci: add new RX ring design to determine full RX ring efficiently (bsc#1227149).
- wifi: rtw89: pci: add pre_deinit to be called after probe complete (bsc#1227149).
- wifi: rtw89: pci: correct interrupt mitigation register for 8852CE (bsc#1227149).
- wifi: rtw89: pci: define PCI ring address for WiFi 7 chips (bsc#1227149).
- wifi: rtw89: pci: fix interrupt enable mask for HALT C2H of RTL8851B (bsc#1227149).
- wifi: rtw89: pci: generalize code of PCI control DMA IO for WiFi 7 (bsc#1227149).
- wifi: rtw89: pci: generalize interrupt status bits of interrupt handlers (bsc#1227149).
- wifi: rtw89: pci: implement PCI CLK/ASPM/L1SS for WiFi 7 chips (bsc#1227149).
- wifi: rtw89: pci: implement PCI mac_post_init for WiFi 7 chips (bsc#1227149).
- wifi: rtw89: pci: implement PCI mac_pre_init for WiFi 7 chips (bsc#1227149).
- wifi: rtw89: pci: interrupt v2 refine IMR for SER (bsc#1227149).
- wifi: rtw89: pci: reset BDRAM according to chip gen (bsc#1227149).
- wifi: rtw89: pci: stop/start DMA for level 1 recovery according to chip gen (bsc#1227149).
- wifi: rtw89: pci: update SER timer unit and timeout time (bsc#1227149).
- wifi: rtw89: pci: update interrupt mitigation register for 8922AE (bsc#1227149).
- wifi: rtw89: pci: use DBI function for 8852AE/8852BE/8851BE (bsc#1227149).
- wifi: rtw89: pci: use gen_def pointer to configure mac_{pre,post}_init and clear PCI ring index (bsc#1227149).
- wifi: rtw89: pci: validate RX tag for RXQ and RPQ (bsc#1227149).
- wifi: rtw89: phy: add BB wrapper of TX power for WiFi 7 chips (bsc#1227149).
- wifi: rtw89: phy: add parser to support RX gain dynamic setting flow (bsc#1227149).
- wifi: rtw89: phy: add phy_gen_def::cr_base to support WiFi 7 chips (bsc#1227149).
- wifi: rtw89: phy: change naming related BT coexistence functions (bsc#1227149).
- wifi: rtw89: phy: dynamically adjust EDCCA threshold (bsc#1227149).
- wifi: rtw89: phy: extend TX power common stuffs for Wi-Fi 7 chips (bsc#1227149).
- wifi: rtw89: phy: generalize valid bit of BSS color (bsc#1227149).
- wifi: rtw89: phy: ignore special data from BB parameter file (bsc#1227149).
- wifi: rtw89: phy: modify register setting of ENV_MNTR, PHYSTS and DIG (bsc#1227149).
- wifi: rtw89: phy: move bb_gain_info used by WiFi 6 chips to union (bsc#1227149).
- wifi: rtw89: phy: print out RFK log with formatted string (bsc#1227149).
- wifi: rtw89: phy: rate pattern handles HW rate by chip gen (bsc#1227149).
- wifi: rtw89: phy: refine helpers used for raw TX power (bsc#1227149).
- wifi: rtw89: phy: set TX power RU limit according to chip gen (bsc#1227149).
- wifi: rtw89: phy: set TX power by rate according to chip gen (bsc#1227149).
- wifi: rtw89: phy: set TX power limit according to chip gen (bsc#1227149).
- wifi: rtw89: phy: set TX power offset according to chip gen (bsc#1227149).
- wifi: rtw89: phy: set channel_info for WiFi 7 chips (bsc#1227149).
- wifi: rtw89: prepare scan leaf functions for wifi 7 ICs (bsc#1227149).
- wifi: rtw89: process regulatory for 6 GHz power type (bsc#1227149).
- wifi: rtw89: provide functions to configure NoA for beacon update (bsc#1227149).
- wifi: rtw89: recognize log format from firmware file (bsc#1227149).
- wifi: rtw89: reference quota mode when setting Tx power (bsc#1227149).
- wifi: rtw89: refine H2C command that pause transmitting by MAC ID (bsc#1227149).
- wifi: rtw89: refine add_chan H2C command to encode_bits (bsc#1227149).
- wifi: rtw89: refine bandwidth 160MHz uplink OFDMA performance (bsc#1227149).
- wifi: rtw89: refine clearing supported bands to check 2/5 GHz first (bsc#1227149).
- wifi: rtw89: refine element naming used by queue empty check (bsc#1227149).
- wifi: rtw89: refine hardware scan C2H events (bsc#1227149).
- wifi: rtw89: refine packet offload delete flow of 6 GHz probe (bsc#1227149).
- wifi: rtw89: refine packet offload handling under SER (bsc#1227149).
- wifi: rtw89: refine remain on channel flow to improve P2P connection (bsc#1227149).
- wifi: rtw89: refine rtw89_correct_cck_chan() by rtw89_hw_to_nl80211_band() (bsc#1227149).
- wifi: rtw89: refine uplink trigger based control mechanism (bsc#1227149).
- wifi: rtw89: regd: configure Thailand in regulation type (bsc#1227149).
- wifi: rtw89: regd: handle policy of 6 GHz according to BIOS (bsc#1227149).
- wifi: rtw89: regd: judge 6 GHz according to chip and BIOS (bsc#1227149).
- wifi: rtw89: regd: judge UNII-4 according to BIOS and chip (bsc#1227149).
- wifi: rtw89: regd: update regulatory map to R64-R40 (bsc#1227149).
- wifi: rtw89: regd: update regulatory map to R64-R43 (bsc#1227149).
- wifi: rtw89: regd: update regulatory map to R65-R44 (bsc#1227149).
- wifi: rtw89: release bit in rtw89_fw_h2c_del_pkt_offload() (bsc#1227149).
- wifi: rtw89: return failure if needed firmware elements are not recognized (bsc#1227149).
- wifi: rtw89: rfk: add H2C command to trigger DACK (bsc#1227149).
- wifi: rtw89: rfk: add H2C command to trigger DPK (bsc#1227149).
- wifi: rtw89: rfk: add H2C command to trigger IQK (bsc#1227149).
- wifi: rtw89: rfk: add H2C command to trigger RX DCK (bsc#1227149).
- wifi: rtw89: rfk: add H2C command to trigger TSSI (bsc#1227149).
- wifi: rtw89: rfk: add H2C command to trigger TXGAPK (bsc#1227149).
- wifi: rtw89: rfk: add a completion to wait RF calibration report from C2H event (bsc#1227149).
- wifi: rtw89: rfk: disable driver tracking during MCC (bsc#1227149).
- wifi: rtw89: rfk: send channel information to firmware for RF calibrations (bsc#1227149).
- wifi: rtw89: sar: let caller decide the center frequency to query (bsc#1227149).
- wifi: rtw89: scan offload wait for FW done ACK (bsc#1227149).
- wifi: rtw89: ser: L1 add pre-M0 and post-M0 states (bsc#1227149).
- wifi: rtw89: ser: reset total_sta_assoc and tdls_peer when L2 (bsc#1227149).
- wifi: rtw89: set TX power without precondition during setting channel (bsc#1227149).
- wifi: rtw89: set capability of TX antenna diversity (bsc#1227149).
- wifi: rtw89: set entry size of address CAM to H2C field by chip (bsc#1227149).
- wifi: rtw89: show EHT rate in debugfs (bsc#1227149).
- wifi: rtw89: support U-NII-4 channels on 5GHz band (bsc#1227149).
- wifi: rtw89: support firmware log with formatted text (bsc#1227149).
- wifi: rtw89: suppress the log for specific SER called CMDPSR_FRZTO (bsc#1227149).
- wifi: rtw89: tweak H2C TX waiting function for SER (bsc#1227149).
- wifi: rtw89: update DMA function with different generation (bsc#1227149).
- wifi: rtw89: update ps_state register for chips with different generation (bsc#1227149).
- wifi: rtw89: update scan C2H messages for wifi 7 IC (bsc#1227149).
- wifi: rtw89: update suspend/resume for different generation (bsc#1227149).
- wifi: rtw89: use PLCP information to match BSS_COLOR and AID (bsc#1227149).
- wifi: rtw89: use chip_info::small_fifo_size to choose debug_mask (bsc#1227149).
- wifi: rtw89: use flexible array member in rtw89_btc_btf_tlv (bsc#1227149).
- wifi: rtw89: use struct and le32_get_bits to access RX info (bsc#1227149).
- wifi: rtw89: use struct and le32_get_bits() to access RX descriptor (bsc#1227149).
- wifi: rtw89: use struct and le32_get_bits() to access received PHY status IEs (bsc#1227149).
- wifi: rtw89: use struct rtw89_phy_sts_ie0 instead of macro to access PHY IE0 status (bsc#1227149).
- wifi: rtw89: use struct to access RA report (bsc#1227149).
- wifi: rtw89: use struct to access firmware C2H event header (bsc#1227149).
- wifi: rtw89: use struct to access register-based H2C/C2H (bsc#1227149).
- wifi: rtw89: use struct to fill H2C command to download beacon frame (bsc#1227149).
- wifi: rtw89: use struct to parse firmware header (bsc#1227149).
- wifi: rtw89: use struct to set RA H2C command (bsc#1227149).
- wifi: rtw89: wow: move release offload packet earlier for WoWLAN mode (bsc#1227149).
- wifi: rtw89: wow: refine WoWLAN flows of HCI interrupts and low power mode (bsc#1227149).
- wifi: rtw89: wow: set security engine options for 802.11ax chips only (bsc#1227149).
- wifi: rtw89: wow: update WoWLAN reason register for different chips (bsc#1227149).
- wifi: rtw89: wow: update WoWLAN status register for different generation (bsc#1227149).
- wifi: rtw89: wow: update config mac function with different generation (bsc#1227149).
- wifi: ti: wlcore: sdio: Drop unused include (bsc#1227149).
- wifi: virt_wifi: avoid reporting connection success with wrong SSID (git-fixes).
- wifi: virt_wifi: do not use strlen() in const context (git-fixes).
- wifi: wcn36xx: Annotate struct wcn36xx_hal_ind_msg with __counted_by (bsc#1227149).
- wifi: wcn36xx: Convert to platform remove callback returning void (bsc#1227149).
- wifi: wcn36xx: remove unnecessary (void*) conversions (bsc#1227149).
- wifi: wext: avoid extra calls to strlen() in ieee80211_bss() (bsc#1227149).
- wifi: wfx: Use devm_kmemdup to replace devm_kmalloc + memcpy (bsc#1227149).
- wifi: wfx: allow to send frames during ROC (bsc#1227149).
- wifi: wfx: fix power_save setting when AP is stopped (bsc#1227149).
- wifi: wfx: implement wfx_remain_on_channel() (bsc#1227149).
- wifi: wfx: introduce hif_scan_uniq() (bsc#1227149).
- wifi: wfx: move wfx_skb_*() out of the header file (bsc#1227149).
- wifi: wfx: relocate wfx_rate_mask_to_hw() (bsc#1227149).
- wifi: wfx: scan_lock is global to the device (bsc#1227149).
- wifi: wfx: simplify exclusion between scan and Rx filters (bsc#1227149).
- wifi: wil6210: fw: Replace zero-length arrays with DECLARE_FLEX_ARRAY() helper (bsc#1227149).
- wifi: wil6210: wmi: Replace zero-length array with DECLARE_FLEX_ARRAY() helper (bsc#1227149).
- wifi: wilc1000: Increase ASSOC response buffer (bsc#1227149).
- wifi: wilc1000: Remove unused declarations (bsc#1227149).
- wifi: wilc1000: add SPI commands retry mechanism (bsc#1227149).
- wifi: wilc1000: add back-off algorithm to balance tx queue packets (bsc#1227149).
- wifi: wilc1000: add missing read critical sections around vif list traversal (bsc#1227149).
- wifi: wilc1000: always release SDIO host in wilc_sdio_cmd53() (bsc#1227149).
- wifi: wilc1000: cleanup struct wilc_conn_info (bsc#1227149).
- wifi: wilc1000: correct CRC7 calculation (bsc#1227149).
- wifi: wilc1000: fix declarations ordering (bsc#1227149).
- wifi: wilc1000: fix driver_handler when committing initial configuration (bsc#1227149).
- wifi: wilc1000: fix ies_len type in connect path (git-fixes).
- wifi: wilc1000: fix incorrect power down sequence (bsc#1227149).
- wifi: wilc1000: remove AKM suite be32 conversion for external auth request (bsc#1227149).
- wifi: wilc1000: remove setting msg.spi (bsc#1227149).
- wifi: wilc1000: remove use of has_thrpt_enh3 flag (bsc#1227149).
- wifi: wilc1000: set preamble size to auto as default in wilc_init_fw_config() (bsc#1227149).
- wifi: wilc1000: simplify remain on channel support (bsc#1227149).
- wifi: wilc1000: simplify wilc_scan() (bsc#1227149).
- wifi: wilc1000: split deeply nested RCU list traversal in dedicated helper (bsc#1227149).
- wifi: wilc1000: use SRCU instead of RCU for vif list traversal (bsc#1227149).
- wifi: wilc1000: validate chip id during bus probe (bsc#1227149).
- wifi: wl1251: replace deprecated strncpy with strscpy (bsc#1227149).
- wifi: wl18xx: replace deprecated strncpy with strscpy (bsc#1227149).
- wifi: wlcore: boot: replace deprecated strncpy with strscpy (bsc#1227149).
- wifi: wlcore: main: replace deprecated strncpy with strscpy (bsc#1227149).
- wifi: wlcore: sdio: Rate limit wl12xx_sdio_raw_{read,write}() failures warns (bsc#1227149).
- wifi: wlcore: sdio: Use module_sdio_driver macro to simplify the code (bsc#1227149).
- wifi: zd1211rw: fix typo 'tranmits' (bsc#1227149).
- wifi: zd1211rw: remove __nocast from zd_addr_t (bsc#1227149).
- wifi: zd1211rw: silence sparse warnings (bsc#1227149).
- wlcore: spi: Remove redundant of_match_ptr() (bsc#1227149).
- work around gcc bugs with 'asm goto' with outputs (git-fixes).
- x86/amd_nb: Check for invalid SMN reads (git-fixes).
- x86/apic: Force native_apic_mem_read() to use the MOV instruction (git-fixes).
- x86/asm: Fix build of UML with KASAN (git-fixes).
- x86/asm: Remove the __iomem annotation of movdir64b()'s dst argument (git-fixes).
- x86/bhi: Avoid warning in #DB handler due to BHI mitigation :(git-fixes).
- x86/boot: Ignore NMIs during very early boot (git-fixes).
- x86/cpu: Provide default cache line size if not enumerated (git-fixes).
- x86/csum: Fix clang -Wuninitialized in csum_partial() (git-fixes).
- x86/csum: Improve performance of `csum_partial` (git-fixes).
- x86/csum: Remove unnecessary odd handling (git-fixes).
- x86/csum: clean up `csum_partial' further (git-fixes).
- x86/fpu: Fix AMD X86_BUG_FXSAVE_LEAK fixup (git-fixes).
- x86/head/64: Move the __head definition to <asm/init.h> (git-fixes).
- x86/insn: Add VEX versions of VPDPBUSD, VPDPBUSDS, VPDPWSSD and VPDPWSSDS (git-fixes).
- x86/insn: Fix PUSH instruction in x86 instruction decoder opcode map (git-fixes).
- x86/kconfig: Add as-instr64 macro to properly evaluate AS_WRUSS (git-fixes).
- x86/kexec: Fix bug with call depth tracking (git-fixes).
- x86/mce: Dynamically size space for machine check records (bsc#1222241).
- x86/mce: Mark fatal MCE's page as poison to avoid panic in the kdump kernel (git-fixes).
- x86/nmi: Drop unused declaration of proc_nmi_enabled() (git-fixes).
- x86/resctrl: Read supported bandwidth sources from CPUID (git-fixes).
- x86/resctrl: Remove redundant variable in mbm_config_write_domain() (git-fixes).
- x86/sev: Fix position dependent variable references in startup code (git-fixes).
- x86/shstk: Make return uprobe work with shadow stack (git-fixes).
- x86/speculation, objtool: Use absolute relocations for annotations (git-fixes).
- x86/tdx: Preserve shared bit on mprotect() (git-fixes).
- x86/tsc: Trust initial offset in architectural TSC-adjust MSRs (bsc#1222015 bsc#1226962).
- x86/uaccess: Fix missed zeroing of ia32 u64 get_user() range checking (git-fixes).
- x86: Stop using weak symbols for __iowrite32_copy() (bsc#1226502)
- xen/x86: add extra pages to unpopulated-alloc if available (git-fixes).
- xfs: Add cond_resched to block unmap range and reflink remap path (bsc#1228211).
- xfs: use roundup_pow_of_two instead of ffs during xlog_find_tail (git-fixes).
- xhci: Apply broken streams quirk to Etron EJ188 xHCI host (stable-fixes).
- xhci: Apply reset resume quirk to Etron EJ188 xHCI host (stable-fixes).
- xhci: Handle TD clearing for multiple streams case (git-fixes).
- xhci: Set correct transferred length for cancelled bulk transfers (stable-fixes).
- xhci: always resume roothubs if xHC was reset during resume (stable-fixes).
Patchnames
SUSE-2024-2896,SUSE-SLE-Module-Public-Cloud-15-SP6-2024-2896,openSUSE-SLE-15.6-2024-2896
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "The SUSE Linux Enterprise 15 SP6 Azure kernel was updated to receive various security bugfixes.\n\n\nThe following security bugs were fixed:\n\n- CVE-2024-41014: xfs: add bounds checking to xlog_recover_process_data (bsc#1228408).\n- CVE-2024-41013: xfs: do not walk off the end of a directory data block (bsc#1228405).\n- CVE-2024-41017: jfs: do not walk off the end of ealist (bsc#1228403).\n- CVE-2024-40972: ext4: fold quota accounting into ext4_xattr_inode_lookup_create() (bsc#1227910).\n- CVE-2024-39276: ext4: fix mb_cache_entry\u0027s e_refcnt leak in ext4_xattr_block_cache_find() (bsc#1226993).\n- CVE-2024-40925: block: fix request.queuelist usage in flush (bsc#1227789).\n- CVE-2024-40998: ext4: fix uninitialized ratelimit_state-\u003elock access in __ext4_fill_super() (bsc#1227866).\n- CVE-2024-39494: ima: Fix use-after-free on a dentry\u0027s dname.name (bsc#1227716).\n- CVE-2024-39496: btrfs: zoned: fix use-after-free due to race with dev replace (bsc#1227719).\n- CVE-2024-41091: tun: add missing verification for short frame (bsc#1228327).\n- CVE-2024-41090: tap: add missing verification for short frame (bsc#1228328).\n- CVE-2024-40999: net: ena: Add validation for completion descriptors consistency (bsc#1227913).\n- CVE-2024-40966: kABI: tty: add the option to have a tty reject a new ldisc (bsc#1227886).\n- CVE-2024-40975: platform/x86: x86-android-tablets: Unregister devices in reverse order (bsc#1227926).\n- CVE-2024-40970: Avoid hw_desc array overrun in dw-axi-dmac (bsc#1227899).\n- CVE-2024-40947: ima: Avoid blocking in RCU read-side critical section (bsc#1227803).\n- CVE-2024-40908: bpf: Set run context for rawtp test_run callback (bsc#1227783).\n- CVE-2024-40960: ipv6: prevent possible NULL dereference in rt6_probe() (bsc#1227813).\n- CVE-2024-40935: cachefiles: flush all requests after setting CACHEFILES_DEAD (bsc#1227797).\n- CVE-2024-40961: ipv6: prevent possible NULL deref in fib6_nh_init() (bsc#1227814).\n- CVE-2024-39504: netfilter: nft_inner: validate mandatory meta and payload (bsc#1227757).\n- CVE-2024-41006: netrom: Fix a memory leak in nr_heartbeat_expiry() (bsc#1227862).\n- CVE-2024-40937: gve: Clear napi-\u003eskb before dev_kfree_skb_any() (bsc#1227836).\n- CVE-2024-39507: net: hns3: fix kernel crash problem in concurrent scenario (bsc#1227730).\n- CVE-2024-40940: net/mlx5: Fix tainted pointer delete is case of flow rules creation fail (bsc#1227800).\n- CVE-2024-40928: net: ethtool: fix the error condition in ethtool_get_phy_stats_ethtool() (bsc#1227788).\n- CVE-2024-26944: btrfs: zoned: fix lock ordering in btrfs_zone_activate() (bsc#1223731).\n- CVE-2024-40923: vmxnet3: disable rx data ring on dma allocation failure (bsc#1227786).\n- CVE-2024-40931: mptcp: ensure snd_una is properly initialized on connect (bsc#1227780).\n- CVE-2024-40919: bnxt_en: Adjust logging of firmware messages in case of released token in __hwrm_send() (bsc#1227779).\n- CVE-2024-39487: bonding: Fix out-of-bounds read in bond_option_arp_ip_targets_set() (bsc#1227573)\n- CVE-2024-35908: tls: get psock ref after taking rxlock to avoid leak (bsc#1224490)\n- CVE-2024-35899: netfilter: nf_tables: flush pending destroy work before exit_net release (bsc#1224499)\n- CVE-2024-35934: net/smc: reduce rtnl pressure in smc_pnet_create_pnetids_list() (bsc#1224641)\n- CVE-2024-35893: net/sched: act_skbmod: prevent kernel-infoleak (bsc#1224512)\n- CVE-2024-40901: scsi: mpt3sas: Avoid test/set_bit() operating in non-allocated memory (bsc#1227762).\n- CVE-2024-39472: xfs: fix log recovery buffer allocation for the legacy h_size fixup (bsc#1227432).\n- CVE-2024-40953: KVM: Fix a data race on last_boosted_vcpu in kvm_vcpu_on_spin() (bsc#1227806).\n- CVE-2024-27404: mptcp: fix data races on remote_id (bsc#1224422)\n- CVE-2024-27020: netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get() (bsc#1223815)\n- CVE-2024-27019: netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get() (bsc#1223813)\n- CVE-2024-40948: mm/page_table_check: fix crash on ZONE_DEVICE (bsc#1227801).\n- CVE-2024-35890: gro: fix ownership transfer (bsc#1224516).\n- CVE-2024-36902: ipv6: fib6_rules: avoid possible NULL dereference in fib6_rule_action() (bsc#1225719).\n- CVE-2024-36946: phonet: fix rtm_phonet_notify() skb allocation (bsc#1225851).\n- CVE-2024-38586: r8169: Fix possible ring buffer corruption on fragmented Tx packets (bsc#1226750).\n- CVE-2024-39468: smb: client: fix deadlock in smb2_find_smb_tcon() (bsc#1227103.\n- CVE-2024-40906: net/mlx5: Always stop health timer during driver removal (bsc#1227763).\n- CVE-2024-27012: netfilter: nf_tables: restore set elements when delete set fails (bsc#1223804).\n- CVE-2024-39498: drm/mst: Fix NULL pointer dereference at drm_dp_add_payload_part2 (bsc#1227723)\n- CVE-2024-39502: ionic: fix use after netif_napi_del() (bsc#1227755).\n- CVE-2024-27016: netfilter: flowtable: validate pppoe header (bsc#1223807).\n- CVE-2024-36901: ipv6: prevent NULL dereference in ip6_output() (bsc#1225711)\n- CVE-2024-36004: i40e: Do not use WQ_MEM_RECLAIM flag for workqueue (bsc#1224545)\n- CVE-2024-27025: nbd: null check for nla_nest_start (bsc#1223778)\n- CVE-2024-35853: mlxsw: spectrum_acl_tcam: Fix memory leak during rehash (bsc#1224604).\n- CVE-2024-35854: Fixed possible use-after-free during rehash (bsc#1224636).\n- CVE-2024-27402: phonet/pep: fix racy skb_queue_empty() use (bsc#1224414).\n- CVE-2023-52435: net: prevent mss overflow in skb_segment() (bsc#1220138).\n- CVE-2024-27065: netfilter: nf_tables: do not compare internal table flags on updates (bsc#1223836).\n- CVE-2024-27015: netfilter: flowtable: incorrect pppoe tuple (bsc#1223806).\n- CVE-2024-27064: netfilter: nf_tables: Fix a memory leak in nf_tables_updchain (bsc#1223740).\n- CVE-2024-26663: tipc: Check the bearer type before calling tipc_udp_nl_bearer_add() (bsc#1222326).\n- CVE-2023-47210: wifi: iwlwifi: bump FW API to 90 for BZ/SC devices (bsc#1225601, bsc#1225600).\n- CVE-2023-52775: net/smc: avoid data corruption caused by decline (bsc#1225088).\n- CVE-2024-38558: net: openvswitch: fix overwriting ct original tuple for ICMPv6 (bsc#1226783).\n- CVE-2024-39490: ipv6: sr: fix missing sk_buff release in seg6_input_core (bsc#1227626).\n- CVE-2024-26826: mptcp: fix data re-injection from stale subflow (bsc#1223010).\n- CVE-2024-26615: net/smc: fix illegal rmb_desc access in SMC-D connection dump (bsc#1220942).\n- CVE-2024-35942: pmdomain: imx8mp-blk-ctrl: imx8mp_blk: Add fdcc clock to hdmimix domain (bsc#1224589).\n- CVE-2024-26691: KVM: arm64: Fix circular locking dependency (bsc#1222463).\n- CVE-2024-36909: Drivers: hv: vmbus: Do not free ring buffers that couldn\u0027t be re-encrypted (bsc#1225744).\n- CVE-2024-36910: uio_hv_generic: Do not free decrypted memory (bsc#1225717).\n- CVE-2024-36911: hv_netvsc: Do not free decrypted memory (bsc#1225745).\n- CVE-2024-36912: Drivers: hv: vmbus: Track decrypted status in vmbus_gpadl (bsc#1225752).\n- CVE-2024-36913: Drivers: hv: vmbus: Leak pages if set_memory_encrypted() fails (bsc#1225753).\n- CVE-2024-26665: tunnels: fix out of bounds access when building IPv6 PMTU error (bsc#1222328).\n- CVE-2024-38659: enic: Validate length of nl attributes in enic_set_vf_port (bsc#1226883).\n- CVE-2023-52751: smb: client: fix use-after-free in smb2_query_info_compound() (bsc#1225489).\n- CVE-2024-39482: bcache: fix variable length array abuse in btree_iter (bsc#1227447).\n- CVE-2024-39474: mm/vmalloc: fix vmalloc which may return null if called with __GFP_NOFAIL (bsc#1227434).\n- CVE-2024-26636: llc: make llc_ui_sendmsg() more robust against bonding changes (bsc#1221659).\n- CVE-2024-26635: llc: Drop support for ETH_P_TR_802_2 (bsc#1221656).\n- CVE-2024-38598: md: fix resync softlockup when bitmap size is less than array size (bsc#1226757).\n- CVE-2024-36003: ice: fix LAG and VF lock dependency in ice_reset_vf() (bsc#1224544).\n- CVE-2024-38604: block: refine the EOF check in blkdev_iomap_begin (bsc#1226866).\n- CVE-2024-26641: ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv() (bsc#1221654).\n- CVE-2024-26863: hsr: Fix uninit-value access in hsr_get_node() (bsc#1223021).\n- CVE-2024-26633: ip6_tunnel: fix NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tlv_enc_lim() (bsc#1221647).\n- CVE-2024-26623: pds_core: Prevent race issues involving the adminq (bsc#1221057).\n- CVE-2024-26785: iommufd: Fix protection fault in iommufd_test_syz_conv_iova (bsc#1222779).\n- CVE-2024-26734: devlink: fix possible use-after-free and memory leaks in devlink_init() (bsc#1222438).\n- CVE-2024-35805: dm snapshot: fix lockup in dm_exception_table_exit (bsc#1224743).\n- CVE-2024-39371: io_uring: check for non-NULL file pointer in io_file_can_poll() (bsc#1226990).\n- CVE-2023-52846: hsr: Prevent use after free in prp_create_tagged_frame() (bsc#1225098).\n- CVE-2024-38610: drivers/virt/acrn: fix PFNMAP PTE checks in acrn_vm_ram_map() (bsc#1226758).\n- CVE-2024-37354: btrfs: fix crash on racing fsync and size-extending write into prealloc (bsc#1227101).\n- CVE-2024-36919: scsi: bnx2fc: Remove spin_lock_bh while releasing resources after upload (bsc#1225767).\n- CVE-2024-38559: scsi: qedf: Ensure the copied buf is NUL terminated (bsc#1226785).\n- CVE-2024-38570: gfs2: Fix potential glock use-after-free on unmount (bsc#1226775).\n- CVE-2024-36904: tcp: Use refcount_inc_not_zero() in tcp_twsk_unique() (bsc#1225732).\n- CVE-2023-52881: tcp: do not accept ACK of bytes we never sent (bsc#1225611).\n- CVE-2024-37353: virtio: fixed a double free in vp_del_vqs() (bsc#1226875).\n- CVE-2024-39301: net/9p: fix uninit-value in p9_client_rpc() (bsc#1226994).\n- CVE-2024-35843: iommu/vt-d: Use device rbtree in iopf reporting path (bsc#1224751).\n- CVE-2024-37078: nilfs2: fix potential kernel bug due to lack of writeback flag waiting (bsc#1227066).\n- CVE-2024-35247: fpga: region: add owner module and take its refcount (bsc#1226948).\n- CVE-2024-36479: fpga: bridge: add owner module and take its refcount (bsc#1226949).\n- CVE-2024-37021: fpga: manager: add owner module and take its refcount (bsc#1226950).\n- CVE-2024-36281: net/mlx5: Use mlx5_ipsec_rx_status_destroy to correctly delete status rules (bsc#1226799).\n- CVE-2024-38580: epoll: be better about file lifetimes (bsc#1226610).\n- CVE-2024-36478: null_blk: fix null-ptr-dereference while configuring \u0027power\u0027 and \u0027submit_queues\u0027 (bsc#1226841).\n- CVE-2024-38636: f2fs: multidev: fix to recognize valid zero block address (bsc#1226879).\n- CVE-2024-38661: s390/ap: Fix crash in AP internal function modify_bitmap() (bsc#1226996).\n- CVE-2024-38564: bpf: Add BPF_PROG_TYPE_CGROUP_SKB attach type enforcement in BPF_LINK_CREATE (bsc#1226789).\n- CVE-2024-38566: bpf: Fix verifier assumptions about socket-\u003esk (bsc#1226790).\n- CVE-2024-38560: scsi: bfa: Ensure the copied buf is NUL terminated (bsc#1226786).\n- CVE-2024-36978: net: sched: sch_multiq: fix possible OOB write in multiq_tune() (bsc#1226514).\n- CVE-2024-36917: block: fix overflow in blk_ioctl_discard() (bsc#1225770).\n- CVE-2024-36974: net/sched: taprio: always validate TCA_TAPRIO_ATTR_PRIOMAP (bsc#1226519).\n- CVE-2024-38627: stm class: Fix a double free in stm_register_device() (bsc#1226857).\n- CVE-2024-38603: drivers/perf: hisi: hns3: Actually use devm_add_action_or_reset() (bsc#1226842).\n- CVE-2024-38553: net: fec: remove .ndo_poll_controller to avoid deadlock (bsc#1226744).\n- CVE-2024-38555: net/mlx5: Discard command completions in internal error (bsc#1226607).\n- CVE-2024-38556: net/mlx5: Add a timeout to acquire the command queue semaphore (bsc#1226774).\n- CVE-2024-38557: net/mlx5: Reload only IB representors upon lag disable/enable (bsc#1226781).\n- CVE-2024-38608: net/mlx5e: Fix netif state handling (bsc#1226746).\n- CVE-2024-38597: eth: sungem: remove .ndo_poll_controller to avoid deadlocks (bsc#1226749).\n- CVE-2024-38594: net: stmmac: move the EST lock to struct stmmac_priv (bsc#1226734).\n- CVE-2024-38569: drivers/perf: hisi_pcie: Fix out-of-bound access when valid event group (bsc#1226772).\n- CVE-2024-38568: drivers/perf: hisi: hns3: Fix out-of-bound access when valid event group (bsc#1226771).\n- CVE-2024-26814: vfio/fsl-mc: Block calling interrupt handler without trigger (bsc#1222810).\n- CVE-2024-26813: vfio/platform: Create persistent IRQ handlers (bsc#1222809).\n- CVE-2024-36945: net/smc: fix neighbour and rtable leak in smc_ib_find_route() (bsc#1225823).\n- CVE-2024-36923: fs/9p: fix uninitialized values during inode evict (bsc#1225815).\n- CVE-2024-36971: net: fix __dst_negative_advice() race (bsc#1226145).\n- CVE-2024-27414: rtnetlink: fix error logic of IFLA_BRIDGE_FLAGS writing back (bsc#1224439).\n- CVE-2024-35900: netfilter: nf_tables: reject new basechain after table flag update (bsc#1224497).\n- CVE-2024-35886: ipv6: Fix infinite recursion in fib6_dump_done() (bsc#1224670).\n- CVE-2024-36024: drm/amd/display: Disable idle reallow as part of command/gpint execution (bsc#1225702).\n- CVE-2024-36903: ipv6: Fix potential uninit-value access in __ip6_make_skb() (bsc#1225741).\n- CVE-2024-36914: drm/amd/display: Skip on writeback when it\u0027s not applicable (bsc#1225757).\n- CVE-2024-36899: gpiolib: cdev: Fix use after free in lineinfo_changed_notify (bsc#1225737).\n- CVE-2024-35979: raid1: fix use-after-free for original bio in raid1_write_request() (bsc#1224572).\n- CVE-2024-35807: ext4: fix corruption during on-line resize (bsc#1224735).\n- CVE-2023-52622: ext4: avoid online resizing failures due to oversized flex bg (bsc#1222080).\n- CVE-2023-52843: llc: verify mac len before reading mac header (bsc#1224951).\n- CVE-2024-35898: netfilter: nf_tables: Fix potential data-race in __nft_flowtable_type_get() (bsc#1224498).\n- CVE-2024-36915: nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies (bsc#1225758).\n- CVE-2024-36017: rtnetlink: Correct nested IFLA_VF_VLAN_LIST attribute validation (bsc#1225681).\n- CVE-2024-36882: mm: use memalloc_nofs_save() in page_cache_ra_order() (bsc#1225723).\n- CVE-2024-36916: blk-iocost: avoid out of bounds shift (bsc#1225759).\n- CVE-2024-36900: net: hns3: fix kernel crash when devlink reload during initialization (bsc#1225726).\n- CVE-2023-52787: blk-mq: make sure active queue usage is held for bio_integrity_prep() (bsc#1225105).\n- CVE-2024-35925: block: prevent division by zero in blk_rq_stat_sum() (bsc#1224661).\n- CVE-2023-52837: nbd: fix uaf in nbd_open (bsc#1224935).\n- CVE-2023-52786: ext4: fix racy may inline data check in dio write (bsc#1224939).\n- CVE-2024-36934: bna: ensure the copied buf is NUL terminated (bsc#1225760).\n- CVE-2024-36935: ice: ensure the copied buf is NUL terminated (bsc#1225763).\n- CVE-2024-36937: xdp: use flags field to disambiguate broadcast redirect (bsc#1225834).\n- CVE-2023-52672: pipe: wakeup wr_wait after setting max_usage (bsc#1224614).\n- CVE-2023-52845: tipc: Change nla_policy for bearer-related names to NLA_NUL_STRING (bsc#1225585).\n- CVE-2024-36005: netfilter: nf_tables: honor table dormant flag from netdev release event path (bsc#1224539).\n- CVE-2024-26845: scsi: target: core: Add TMF to tmr_list handling (bsc#1223018).\n- CVE-2024-35892: net/sched: fix lockdep splat in qdisc_tree_reduce_backlog() (bsc#1224515).\n- CVE-2024-35848: eeprom: at24: fix memory corruption race condition (bsc#1224612).\n- CVE-2024-35884: udp: do not accept non-tunnel GSO skbs landing in a tunnel (bsc#1224520).\n- CVE-2024-35857: icmp: prevent possible NULL dereferences from icmp_build_probe() (bsc#1224619).\n- CVE-2023-52735: bpf, sockmap: Don\u0027t let sock_map_{close,destroy,unhash} call itself (bsc#1225475).\n- CVE-2024-35926: crypto: iaa - Fix async_disable descriptor leak (bsc#1224655).\n- CVE-2024-35976: Validate user input for XDP_{UMEM|COMPLETION}_FILL_RING (bsc#1224575).\n- CVE-2024-36938: Fixed NULL pointer dereference in sk_psock_skb_ingress_enqueue (bsc#1225761).\n- CVE-2024-36008: ipv4: check for NULL idev in ip_route_use_hint() (bsc#1224540).\n- CVE-2024-35998: Fixed lock ordering potential deadlock in cifs_sync_mid_result (bsc#1224549).\n- CVE-2023-52757: Fixed potential deadlock when releasing mids (bsc#1225548).\n- CVE-2024-27419: Fixed data-races around sysctl_net_busy_read (bsc#1224759)\n- CVE-2024-36957: octeontx2-af: avoid off-by-one read from userspace (bsc#1225762).\n- CVE-2024-26625: Call sock_orphan() at release time (bsc#1221086)\n- CVE-2024-35880: io_uring/kbuf: hold io_buffer_list reference over mmap (bsc#1224523).\n- CVE-2024-35831: io_uring: Fix release of pinned pages when __io_uaddr_map fails (bsc#1224698).\n- CVE-2024-35827: io_uring/net: fix overflow check in io_recvmsg_mshot_prep() (bsc#1224606).\n- CVE-2023-52656: Dropped any code related to SCM_RIGHTS (bsc#1224187).\n- CVE-2023-52699: sysv: don\u0027t call sb_bread() with pointers_lock held (bsc#1224659).\n\nThe following non-security bugs were fixed:\n\n- ACPI: EC: Abort address space access upon error (stable-fixes).\n- ACPI: EC: Avoid returning AE_OK on errors in address space handler (stable-fixes).\n- ACPI: EC: Evaluate orphan _REG under EC device (git-fixes).\n- ACPI: EC: Install address space handler at the namespace root (stable-fixes).\n- ACPI: processor_idle: Fix invalid comparison with insertion sort for latency (git-fixes).\n- ACPI: resource: Do IRQ override on TongFang GXxHRXx and GMxHGxx (stable-fixes).\n- ACPI: x86: Add PNP_UART1_SKIP quirk for Lenovo Blade2 tablets (stable-fixes).\n- ACPI: x86: Force StorageD3Enable on more products (stable-fixes).\n- ACPICA: Revert \u0027ACPICA: avoid Info: mapping multiple BARs. Your kernel is fine.\u0027 (git-fixes).\n- ALSA/hda: intel-dsp-config: Document AVS as dsp_driver option (git-fixes).\n- ALSA: PCM: Allow resume only for suspended streams (stable-fixes).\n- ALSA: dmaengine: Synchronize dma channel after drop() (stable-fixes).\n- ALSA: dmaengine_pcm: terminate dmaengine before synchronize (stable-fixes).\n- ALSA: emux: improve patch ioctl data validation (stable-fixes).\n- ALSA: hda/conexant: Mute speakers at suspend / shutdown (bsc#1228269).\n- ALSA: hda/generic: Add a helper to mute speakers at suspend/shutdown (bsc#1228269).\n- ALSA: hda/realtek: Add more codec ID to no shutup pins list (stable-fixes).\n- ALSA: hda/realtek: Add quirk for Lenovo Yoga Pro 7 14AHP9 (stable-fixes).\n- ALSA: hda/realtek: Add quirk for Lenovo Yoga Pro 7 14ARP8 (stable-fixes).\n- ALSA: hda/realtek: Enable Mute LED on HP 250 G7 (stable-fixes).\n- ALSA: hda/realtek: Enable headset mic on IdeaPad 330-17IKB 81DM (git-fixes).\n- ALSA: hda/realtek: Enable headset mic on Positivo SU C1400 (stable-fixes).\n- ALSA: hda/realtek: Fix conflicting quirk for PCI SSID 17aa:3820 (git-fixes).\n- ALSA: hda/realtek: Fix the speaker output on Samsung Galaxy Book Pro 360 (stable-fixes).\n- ALSA: hda/realtek: Limit mic boost on N14AP7 (stable-fixes).\n- ALSA: hda/realtek: Limit mic boost on VAIO PRO PX (stable-fixes).\n- ALSA: hda/realtek: Remove Framework Laptop 16 from quirks (git-fixes).\n- ALSA: hda/realtek: Support Lenovo Thinkbook 13x Gen 4 (stable-fixes).\n- ALSA: hda/realtek: Support Lenovo Thinkbook 16P Gen 5 (stable-fixes).\n- ALSA: hda/realtek: add quirk for Clevo V5[46]0TU (stable-fixes).\n- ALSA: hda/realtek: cs35l41: Fixup remaining asus strix models (git-fixes).\n- ALSA: hda/realtek: fix mute/micmute LEDs do not work for EliteBook 645/665 G11 (stable-fixes).\n- ALSA: hda/realtek: fix mute/micmute LEDs do not work for ProBook 445/465 G11 (stable-fixes).\n- ALSA: hda/relatek: Enable Mute LED on HP Laptop 15-gw0xxx (stable-fixes).\n- ALSA: hda/tas2781: Add new quirk for Lenovo Hera2 Laptop (stable-fixes).\n- ALSA: hda: cs35l41: Component should be unbound before deconstruction (git-fixes).\n- ALSA: hda: cs35l41: Fix swapped l/r audio channels for Lenovo ThinBook 13x Gen4 (git-fixes).\n- ALSA: hda: cs35l41: Possible null pointer dereference in cs35l41_hda_unbind() (git-fixes).\n- ALSA: hda: cs35l41: Support Lenovo Thinkbook 13x Gen 4 (stable-fixes).\n- ALSA: hda: cs35l41: Support Lenovo Thinkbook 16P Gen 5 (stable-fixes).\n- ALSA: hda: cs35l56: Component should be unbound before deconstruction (git-fixes).\n- ALSA: hda: cs35l56: Fix lifecycle of codec pointer (stable-fixes).\n- ALSA: hda: tas2781: Component should be unbound before deconstruction (git-fixes).\n- ALSA: pcm_dmaengine: Do not synchronize DMA channel when DMA is paused (git-fixes).\n- ALSA: seq: Fix missing MSB in MIDI2 SPP conversion (git-fixes).\n- ALSA: seq: Fix missing channel at encoding RPN/NRPN MIDI2 messages (git-fixes).\n- ALSA: seq: ump: Fix missing System Reset message handling (git-fixes).\n- ALSA: seq: ump: Skip useless ports for static blocks (git-fixes).\n- ALSA: ump: Do not update FB name for static blocks (git-fixes).\n- ALSA: ump: Force 1 Group for MIDI1 FBs (git-fixes).\n- ALSA: usb-audio: Add a quirk for Sonix HD USB Camera (stable-fixes).\n- ALSA: usb-audio: Fix microphone sound on HD webcam (stable-fixes).\n- ALSA: usb-audio: Move HD Webcam quirk to the right place (git-fixes).\n- ASoC: Intel: common: add ACPI matching tables for Arrow Lake (stable-fixes).\n- ASoC: Intel: sof-sdw: really remove FOUR_SPEAKER quirk (git-fixes).\n- ASoC: Intel: sof_sdw: add JD2 quirk for HP Omen 14 (stable-fixes).\n- ASoC: Intel: sof_sdw: add quirk for Dell SKU 0C0F (stable-fixes).\n- ASoC: Intel: use soc_intel_is_byt_cr() only when IOSF_MBI is reachable (git-fixes).\n- ASoC: SOF: Intel: hda-pcm: Limit the maximum number of periods by MAX_BDL_ENTRIES (stable-fixes).\n- ASoC: SOF: Intel: hda: fix null deref on system suspend entry (git-fixes).\n- ASoC: SOF: imx8m: Fix DSP control regmap retrieval (git-fixes).\n- ASoC: SOF: ipc4-topology: Preserve the DMA Link ID for ChainDMA on unprepare (git-fixes).\n- ASoC: SOF: ipc4-topology: Use correct queue_id for requesting input pin format (stable-fixes).\n- ASoC: SOF: pcm: Restrict DSP D0i3 during S0ix to IPC3 (stable-fixes).\n- ASoC: SOF: sof-audio: Skip unprepare for in-use widgets on error rollback (stable-fixes).\n- ASoC: TAS2781: Fix tasdev_load_calibrated_data() (git-fixes).\n- ASoC: amd: Adjust error handling in case of absent codec device (git-fixes).\n- ASoC: amd: acp: add a null check for chip_pdev structure (git-fixes).\n- ASoC: amd: acp: remove i2s configuration check in acp_i2s_probe() (git-fixes).\n- ASoC: amd: yc: Fix non-functional mic on ASUS M5602RA (stable-fixes).\n- ASoC: amd: yc: Support mic on Lenovo Thinkpad E16 Gen 2 (bsc#1228269).\n- ASoC: cs35l56: Accept values greater than 0 as IRQ numbers (git-fixes).\n- ASoC: fsl-asoc-card: set priv-\u003epdev before using it (git-fixes).\n- ASoC: fsl: fsl_qmc_audio: Check devm_kasprintf() returned value (git-fixes).\n- ASoC: max98088: Check for clk_prepare_enable() error (git-fixes).\n- ASoC: q6apm-lpass-dai: close graph on prepare errors (git-fixes).\n- ASoC: qcom: Adjust issues in case of DT error in asoc_qcom_lpass_cpu_platform_probe() (git-fixes).\n- ASoC: rockchip: i2s-tdm: Fix trcm mode by setting clock on right mclk (git-fixes).\n- ASoC: rt711-sdw: add missing readable registers (stable-fixes).\n- ASoC: rt722-sdca-sdw: add debounce time for type detection (stable-fixes).\n- ASoC: rt722-sdca-sdw: add silence detection register as volatile (stable-fixes).\n- ASoC: sof: amd: fix for firmware reload failure in Vangogh platform (git-fixes).\n- ASoC: ti: davinci-mcasp: Set min period size using FIFO config (stable-fixes).\n- ASoC: ti: omap-hdmi: Fix too long driver name (stable-fixes).\n- ASoC: topology: Do not assign fields that are already set (stable-fixes).\n- ASoC: topology: Fix references to freed memory (stable-fixes).\n- ASoc: tas2781: Enable RCA-based playback without DSP firmware download (git-fixes).\n- Bluetooth: ISO: Check socket flag instead of hcon (git-fixes).\n- Bluetooth: ISO: Fix BIS cleanup (stable-fixes).\n- Bluetooth: Ignore too large handle values in BIG (git-fixes).\n- Bluetooth: L2CAP: Fix rejecting L2CAP_CONN_PARAM_UPDATE_REQ (git-fixes).\n- Bluetooth: Remove usage of the deprecated ida_simple_xx() API (stable-fixes).\n- Bluetooth: ath3k: Fix multiple issues reported by checkpatch.pl (stable-fixes).\n- Bluetooth: btintel: Refactor btintel_set_ppag() (git-fixes).\n- Bluetooth: btnxpuart: Add handling for boot-signature timeout errors (git-fixes).\n- Bluetooth: btnxpuart: Enable Power Save feature on startup (stable-fixes).\n- Bluetooth: hci_bcm4377: Fix msgid release (git-fixes).\n- Bluetooth: hci_bcm4377: Use correct unit for timeouts (git-fixes).\n- Bluetooth: hci_core: cancel all works upon hci_unregister_dev() (stable-fixes).\n- Bluetooth: hci_event: Fix setting of unicast qos interval (git-fixes).\n- Bluetooth: hci_event: Remove code to removed CONFIG_BT_HS (stable-fixes).\n- Bluetooth: hci_event: Set QoS encryption from BIGInfo report (git-fixes).\n- Bluetooth: qca: Fix BT enable failure again for QCA6390 after warm reboot (git-fixes).\n- Bluetooth: qca: set power_ctrl_enabled on NULL returned by gpiod_get_optional() (git-fixes).\n- Enable CONFIG_SCHED_CLUSTER=y on arm64 (jsc#PED-8701).\n- HID: Add quirk for Logitech Casa touchpad (stable-fixes).\n- HID: Ignore battery for ELAN touchscreens 2F2C and 4116 (stable-fixes).\n- HID: core: remove unnecessary WARN_ON() in implement() (git-fixes).\n- HID: logitech-dj: Fix memory leak in logi_dj_recv_switch_to_dj_mode() (git-fixes).\n- HID: mcp-2221: cancel delayed_work only when CONFIG_IIO is enabled (stable-fixes).\n- HID: wacom: Modify pen IDs (git-fixes).\n- Input: ads7846 - use spi_device_id table (stable-fixes).\n- Input: elan_i2c - do not leave interrupt disabled on suspend failure (git-fixes).\n- Input: elantech - fix touchpad state on resume for Lenovo N24 (stable-fixes).\n- Input: ff-core - prefer struct_size over open coded arithmetic (stable-fixes).\n- Input: i8042 - add Ayaneo Kun to i8042 quirk table (stable-fixes).\n- Input: ili210x - fix ili251x_read_touch_data() return value (git-fixes).\n- Input: qt1050 - handle CHIP_ID reading error (git-fixes).\n- Input: silead - Always support 10 fingers (stable-fixes).\n- Input: xpad - add support for ASUS ROG RAIKIRI (git-fixes).\n- Input: xpad - add support for ASUS ROG RAIKIRI PRO (stable-fixes).\n- KVM: SEV-ES: Delegate LBR virtualization to the processor (git-fixes).\n- KVM: SEV-ES: Disallow SEV-ES guests when X86_FEATURE_LBRV is absent (git-fixes).\n- KVM: SVM: WARN on vNMI + NMI window iff NMIs are outright masked (git-fixes).\n- KVM: arm64: Use local TLBI on permission relaxation (bsc#1219478).\n- KVM: x86/pmu: Prioritize VMX interception over #GP on RDPMC due to bad index (bsc#1226158).\n- KVM: x86: Always sync PIR to IRR prior to scanning I/O APIC routes (git-fixes).\n- KVM: x86: Do not advertise guest.MAXPHYADDR as host.MAXPHYADDR in CPUID (git-fixes).\n- NFS: Fix READ_PLUS when server does not support OP_READ_PLUS (git-fixes).\n- NFS: abort nfs_atomic_open_v23 if name is too long (bsc#1219847).\n- NFS: add atomic_open for NFSv3 to handle O_TRUNC correctly (bsc#1219847).\n- NFS: add barriers when testing for NFS_FSDATA_BLOCKED (git-fixes).\n- NFS: avoid infinite loop in pnfs_update_layout (bsc#1219633 bsc#1226226).\n- NFSD: Fix checksum mismatches in the duplicate reply cache (git-fixes).\n- NFSv4.1 enforce rootpath check in fs_location query (git-fixes).\n- NFSv4.x: by default serialize open/close operations (bsc#1223863 bsc#1227362).\n- NFSv4: Fixup smatch warning for ambiguous return (git-fixes).\n- PCI/ASPM: Update save_state when configuration changes (bsc#1226915)\n- PCI/DPC: Fix use-after-free on concurrent DPC and hot-removal (git-fixes).\n- PCI/MSI: Fix UAF in msi_capability_init (git-fixes).\n- PCI/PM: Avoid D3cold for HP Pavilion 17 PC/1972 PCIe Ports (stable-fixes).\n- PCI: Clear Secondary Status errors after enumeration (bsc#1226928)\n- PCI: Do not wait for disconnected devices when resuming (git-fixes).\n- PCI: Extend ACS configurability (bsc#1228090).\n- PCI: Fix resource double counting on remove \u0026 rescan (git-fixes).\n- PCI: Introduce cleanup helpers for device reference counts and locks (stable-fixes).\n- PCI: dw-rockchip: Fix initial PERST# GPIO value (git-fixes).\n- PCI: dwc: Fix index 0 incorrectly being interpreted as a free ATU slot (git-fixes).\n- PCI: endpoint: Clean up error handling in vpci_scan_bus() (git-fixes).\n- PCI: endpoint: Fix error handling in epf_ntb_epc_cleanup() (git-fixes).\n- PCI: endpoint: pci-epf-test: Make use of cached \u0027epc_features\u0027 in pci_epf_test_core_init() (git-fixes).\n- PCI: keystone: Do not enable BAR 0 for AM654x (git-fixes).\n- PCI: keystone: Fix NULL pointer dereference in case of DT error in ks_pcie_setup_rc_app_regs() (git-fixes).\n- PCI: keystone: Relocate ks_pcie_set/clear_dbi_mode() (git-fixes).\n- PCI: qcom-ep: Disable resources unconditionally during PERST# assert (git-fixes).\n- PCI: rcar: Demote WARN() to dev_warn_ratelimited() in rcar_pcie_wakeup() (git-fixes).\n- PCI: rockchip: Use GPIOD_OUT_LOW flag while requesting ep_gpio (git-fixes).\n- PCI: tegra194: Set EP alignment restriction for inbound ATU (git-fixes).\n- PCI: vmd: Create domain symlink before pci_bus_add_devices() (bsc#1227363).\n- RAS/AMD/ATL: Fix MI300 bank hash (bsc#1225300).\n- RAS/AMD/ATL: Use system settings for MI300 DRAM to normalized address translation (bsc#1225300).\n- RDMA/bnxt_re: Fix the max msix vectors macro (git-fixes)\n- RDMA/mana_ib: Ignore optional access flags for MRs (git-fixes).\n- RDMA/mlx5: Add check for srq max_sge attribute (git-fixes)\n- RDMA/mlx5: Ensure created mkeys always have a populated rb_key (git-fixes)\n- RDMA/mlx5: Fix unwind flow as part of mlx5_ib_stage_init_init (git-fixes)\n- RDMA/mlx5: Follow rb_key.ats when creating new mkeys (git-fixes)\n- RDMA/mlx5: Remove extra unlock on error path (git-fixes)\n- RDMA/restrack: Fix potential invalid address access (git-fixes)\n- RDMA/rxe: Fix data copy for IB_SEND_INLINE (git-fixes)\n- RDMA/rxe: Fix responder length checking for UD request packets (git-fixes)\n- SUNRPC: Fix gss_free_in_token_pages() (git-fixes).\n- SUNRPC: Fix loop termination condition in gss_free_in_token_pages() (git-fixes).\n- SUNRPC: avoid soft lockup when transmitting UDP to reachable server (bsc#1225272).\n- SUNRPC: return proper error from gss_wrap_req_priv (git-fixes).\n- Temporarily drop KVM patch that caused a regression (bsc#1226158)\n- USB: Add USB_QUIRK_NO_SET_INTF quirk for START BP-850k (stable-fixes).\n- USB: class: cdc-wdm: Fix CPU lockup caused by excessive log messages (git-fixes).\n- USB: core: Fix duplicate endpoint bug by clearing reserved bits in the descriptor (git-fixes).\n- USB: serial: mos7840: fix crash on resume (git-fixes).\n- USB: serial: option: add Fibocom FM350-GL (stable-fixes).\n- USB: serial: option: add Netprisma LCUK54 series modules (stable-fixes).\n- USB: serial: option: add Rolling RW350-GL variants (stable-fixes).\n- USB: serial: option: add Telit FN912 rmnet compositions (stable-fixes).\n- USB: serial: option: add Telit generic core-dump composition (stable-fixes).\n- USB: serial: option: add support for Foxconn T99W651 (stable-fixes).\n- USB: xen-hcd: Traverse host/ when CONFIG_USB_XEN_HCD is selected (git-fixes).\n- X.509: Fix the parser of extended key usage for length (bsc#1218820).\n- arm64/io: Provide a WC friendly __iowriteXX_copy() (bsc#1226502)\n- arm64/io: add constant-argument check (bsc#1226502 git-fixes)\n- arm64: asm-bug: Add .align 2 to the end of __BUG_ENTRY (git-fixes).\n- arm64: dts: freescale: imx8mm-verdin: enable hysteresis on slow input (git-fixes)\n- arm64: dts: imx8qm-mek: fix gpio number for reg_usdhc2_vmmc (git-fixes)\n- arm64: dts: imx93-11x11-evk: Remove the \u0027no-sdio\u0027 property (git-fixes)\n- arm64: dts: rockchip: Add mdio and ethernet-phy nodes to (git-fixes)\n- arm64: dts: rockchip: Add missing power-domains for rk356x vop_mmu (git-fixes)\n- arm64: dts: rockchip: Add pinctrl for UART0 to rk3308-rock-pi-s (git-fixes)\n- arm64: dts: rockchip: Add sdmmc related properties on (git-fixes)\n- arm64: dts: rockchip: Add sound-dai-cells for RK3368 (git-fixes)\n- arm64: dts: rockchip: Drop invalid mic-in-differential on (git-fixes)\n- arm64: dts: rockchip: Fix SD NAND and eMMC init on rk3308-rock-pi-s (git-fixes)\n- arm64: dts: rockchip: Fix mic-in-differential usage on (git-fixes)\n- arm64: dts: rockchip: Fix mic-in-differential usage on rk3566-roc-pc (git-fixes)\n- arm64: dts: rockchip: Fix the DCDC_REG2 minimum voltage on Quartz64 (git-fixes)\n- arm64: dts: rockchip: Fix the value of `dlg,jack-det-rate` mismatch (git-fixes)\n- arm64: dts: rockchip: Increase VOP clk rate on RK3328 (git-fixes)\n- arm64: dts: rockchip: Rename LED related pinctrl nodes on (git-fixes)\n- arm64: dts: rockchip: Update WIFi/BT related nodes on (git-fixes)\n- arm64: dts: rockchip: fix PMIC interrupt pin on ROCK Pi E (git-fixes)\n- arm64: mm: Batch dsb and isb when populating pgtables (jsc#PED-8688).\n- arm64: mm: Do not remap pgtables for allocate vs populate (jsc#PED-8688).\n- arm64: mm: Do not remap pgtables per-cont(pte|pmd) block (jsc#PED-8688).\n- ata,scsi: libata-core: Do not leak memory for ata_port struct members (git-fixes).\n- ata: ahci: Clean up sysfs file on error (git-fixes).\n- ata: libata-core: Fix double free on error (git-fixes).\n- ata: libata-core: Fix null pointer dereference on error (git-fixes).\n- ata: libata-scsi: Fix offsets for the fixed format sense data (git-fixes).\n- auxdisplay: ht16k33: Drop reference after LED registration (git-fixes).\n- ax25: Fix refcount imbalance on inbound connections (git-fixes).\n- batman-adv: Do not accept TT entries for out-of-spec VIDs (git-fixes).\n- batman-adv: bypass empty buckets in batadv_purge_orig_ref() (stable-fixes).\n- block: Move checking GENHD_FL_NO_PART to bdev_add_partition() (bsc#1226213).\n- bluetooth/hci: disallow setting handle bigger than HCI_CONN_HANDLE_MAX (git-fixes).\n- bpf: check bpf_func_state-\u003ecallback_depth when pruning states (bsc#1225903).\n- bpf: correct loop detection for iterators convergence (bsc#1225903).\n- bpf: exact states comparison for iterator convergence checks (bsc#1225903).\n- bpf: extract __check_reg_arg() utility function (bsc#1225903).\n- bpf: extract same_callsites() as utility function (bsc#1225903).\n- bpf: extract setup_func_entry() utility function (bsc#1225903).\n- bpf: keep track of max number of bpf_loop callback iterations (bsc#1225903).\n- bpf: move explored_state() closer to the beginning of verifier.c (bsc#1225903).\n- bpf: print full verifier states on infinite loop detection (bsc#1225903).\n- bpf: verify callbacks as if they are called unknown number of times (bsc#1225903).\n- bpf: widening for callback iterators (bsc#1225903).\n- bus: mhi: host: allow MHI client drivers to provide the firmware via a pointer (bsc#1227149).\n- bytcr_rt5640 : inverse jack detect for Archos 101 cesium (stable-fixes).\n- cachefiles: add output string to cachefiles_obj_[get|put]_ondemand_fd (git-fixes).\n- cachefiles: remove requests from xarray during flushing requests (bsc#1226588).\n- can: kvaser_usb: Explicitly initialize family in leafimx driver_info struct (git-fixes).\n- can: kvaser_usb: fix return value for hif_usb_send_regout (stable-fixes).\n- can: mcp251xfd: fix infinite loop when xmit fails (git-fixes).\n- cdrom: rearrange last_media_change check to avoid unintentional overflow (stable-fixes).\n- ceph: add ceph_cap_unlink_work to fire check_caps() immediately (bsc#1226022).\n- ceph: always check dir caps asynchronously (bsc#1226022).\n- ceph: always queue a writeback when revoking the Fb caps (bsc#1226022).\n- ceph: break the check delayed cap loop every 5s (bsc#1226022).\n- ceph: fix incorrect kmalloc size of pagevec mempool (bsc#1228417).\n- ceph: switch to use cap_delay_lock for the unlink delay list (bsc#1226022).\n- char: tpm: Fix possible memory leak in tpm_bios_measurements_open() (git-fixes).\n- checkpatch: really skip LONG_LINE_* when LONG_LINE is ignored (git-fixes).\n- cifs: Add a laundromat thread for cached directories (git-fixes, bsc#1225172).\n- clk: davinci: da8xx-cfgchip: Initialize clk_init_data before use (git-fixes).\n- clk: mediatek: mt8183: Only enable runtime PM on mt8183-mfgcfg (git-fixes).\n- clk: qcom: clk-alpha-pll: set ALPHA_EN bit for Stromer Plus PLLs (git-fixes).\n- clk: qcom: gcc-sm6350: Fix gpll6* \u0026 gpll7 parents (git-fixes).\n- clkdev: Update clkdev id usage to allow for longer names (stable-fixes).\n- config/arm64: Enable CoreSight PMU drivers (bsc#1228289 jsc#PED-7859)\n- counter: ti-eqep: enable clock at probe (git-fixes).\n- cpufreq/amd-pstate: Fix the scaling_max_freq setting on shared memory CPPC systems (git-fixes).\n- cpufreq: amd-pstate: Fix the inconsistency in max frequency units (git-fixes).\n- cpufreq: amd-pstate: fix memory leak on CPU EPP exit (stable-fixes).\n- cpufreq: ti-cpufreq: Handle deferred probe with dev_err_probe() (git-fixes).\n- crypto/ecdh: make ecdh_compute_value() to zeroize the public key (bsc#1222768).\n- crypto/ecdsa: make ecdsa_ecc_ctx_deinit() to zeroize the public key (bsc#1222768).\n- crypto: aead,cipher - zeroize key buffer after use (stable-fixes).\n- crypto: ccp - Fix null pointer dereference in __sev_snp_shutdown_locked (git-fixes).\n- crypto: deflate - Add aliases to deflate (bsc#1227190).\n- crypto: ecdh - explicitly zeroize private_key (stable-fixes).\n- crypto: ecdsa - Fix the public key format description (git-fixes).\n- crypto: ecrdsa - Fix module auto-load on add_key (stable-fixes).\n- crypto: hisilicon/debugfs - Fix debugfs uninit process issue (stable-fixes).\n- crypto: hisilicon/qm - Add the err memory release process to qm uninit (stable-fixes).\n- crypto: hisilicon/sec - Fix memory leak for sec resource release (stable-fixes).\n- crypto: iaa - Account for cpu-less numa nodes (bsc#1227190).\n- crypto: qat - extend scope of lock in adf_cfg_add_key_value_param() (git-fixes).\n- cxl/region: Fix cxlr_pmem leaks (git-fixes).\n- cxl/region: Fix memregion leaks in devm_cxl_add_region() (git-fixes).\n- cxl/test: Add missing vmalloc.h for tools/testing/cxl/test/mem.c (git-fixes).\n- cxl/trace: Correct DPA field masks for general_media \u0026 dram events (git-fixes).\n- decompress_bunzip2: fix rare decompression failure (git-fixes).\n- devres: Fix devm_krealloc() wasting memory (git-fixes).\n- devres: Fix memory leakage caused by driver API devm_free_percpu() (git-fixes).\n- dlm: fix user space lock decision to copy lvb (git-fixes).\n- dma: fix call order in dmam_free_coherent (git-fixes).\n- dmaengine: idxd: Fix possible Use-After-Free in irq_process_work_list (git-fixes).\n- dmaengine: ioatdma: Fix error path in ioat3_dma_probe() (git-fixes).\n- dmaengine: ioatdma: Fix kmemleak in ioat_pci_probe() (git-fixes).\n- dmaengine: ioatdma: Fix leaking on version mismatch (git-fixes).\n- dmaengine: ioatdma: Fix missing kmem_cache_destroy() (git-fixes).\n- dmaengine: ti: k3-udma: Fix BCHAN count with UHC and HC channels (git-fixes).\n- docs: crypto: async-tx-api: fix broken code example (git-fixes).\n- dpll: spec: use proper enum for pin capabilities attribute (git-fixes).\n- drivers/xen: Improve the late XenStore init protocol (git-fixes).\n- drivers: core: synchronize really_probe() and dev_uevent() (git-fixes).\n- drivers: soc: xilinx: check return status of get_api_version() (git-fixes).\n- drm/amd/amdgpu: Fix uninitialized variable warnings (git-fixes).\n- drm/amd/display: ASSERT when failing to find index by plane/stream id (stable-fixes).\n- drm/amd/display: Account for cursor prefetch BW in DML1 mode support (stable-fixes).\n- drm/amd/display: Add VCO speed parameter for DCN31 FPU (stable-fixes).\n- drm/amd/display: Add dtbclk access to dcn315 (stable-fixes).\n- drm/amd/display: Add refresh rate range check (stable-fixes).\n- drm/amd/display: Allocate zero bw after bw alloc enable (stable-fixes).\n- drm/amd/display: Check index msg_id before read or write (stable-fixes).\n- drm/amd/display: Check pipe offset before setting vblank (stable-fixes).\n- drm/amd/display: Disable seamless boot on 128b/132b encoding (stable-fixes).\n- drm/amd/display: Exit idle optimizations before HDCP execution (stable-fixes).\n- drm/amd/display: Fix DC mode screen flickering on DCN321 (stable-fixes).\n- drm/amd/display: Fix array-index-out-of-bounds in dml2/FCLKChangeSupport (stable-fixes).\n- drm/amd/display: Fix overlapping copy within dml_core_mode_programming (stable-fixes).\n- drm/amd/display: Fix refresh rate range for some panel (stable-fixes).\n- drm/amd/display: Fix uninitialized variables in DM (stable-fixes).\n- drm/amd/display: Move \u0027struct scaler_data\u0027 off stack (git-fixes).\n- drm/amd/display: Remove pixle rate limit for subvp (stable-fixes).\n- drm/amd/display: Revert Remove pixle rate limit for subvp (stable-fixes).\n- drm/amd/display: Send DP_TOTAL_LTTPR_CNT during detection if LTTPR is present (stable-fixes).\n- drm/amd/display: Set color_mgmt_changed to true on unsuspend (stable-fixes).\n- drm/amd/display: Skip finding free audio for unknown engine_id (stable-fixes).\n- drm/amd/display: Skip pipe if the pipe idx not set properly (stable-fixes).\n- drm/amd/display: Update efficiency bandwidth for dcn351 (stable-fixes).\n- drm/amd/display: Workaround register access in idle race with cursor (stable-fixes).\n- drm/amd/display: change dram_clock_latency to 34us for dcn35 (stable-fixes).\n- drm/amd/display: revert Exit idle optimizations before HDCP execution (stable-fixes).\n- drm/amd/pm: Fix aldebaran pcie speed reporting (git-fixes).\n- drm/amd/pm: Restore config space after reset (stable-fixes).\n- drm/amd/pm: remove logically dead code for renoir (git-fixes).\n- drm/amd: Fix shutdown (again) on some SMU v13.0.4/11 platforms (git-fixes).\n- drm/amdgpu/atomfirmware: add intergrated info v2.3 table (stable-fixes).\n- drm/amdgpu/atomfirmware: fix parsing of vram_info (stable-fixes).\n- drm/amdgpu/atomfirmware: silence UBSAN warning (stable-fixes).\n- drm/amdgpu/mes: fix use-after-free issue (stable-fixes).\n- drm/amdgpu: Check if NBIO funcs are NULL in amdgpu_device_baco_exit (git-fixes).\n- drm/amdgpu: Fix VRAM memory accounting (stable-fixes).\n- drm/amdgpu: Fix buffer size in gfx_v9_4_3_init_ cp_compute_microcode() and rlc_microcode() (git-fixes).\n- drm/amdgpu: Fix memory range calculation (git-fixes).\n- drm/amdgpu: Fix pci state save during mode-1 reset (git-fixes).\n- drm/amdgpu: Fix signedness bug in sdma_v4_0_process_trap_irq() (git-fixes).\n- drm/amdgpu: Fix the ring buffer size for queue VM flush (stable-fixes).\n- drm/amdgpu: Fix uninitialized variable warnings (stable-fixes).\n- drm/amdgpu: Indicate CU havest info to CP (stable-fixes).\n- drm/amdgpu: Initialize timestamp for some legacy SOCs (stable-fixes).\n- drm/amdgpu: Remove GC HW IP 9.3.0 from noretry=1 (git-fixes).\n- drm/amdgpu: Update BO eviction priorities (stable-fixes).\n- drm/amdgpu: Using uninitialized value *size when calling amdgpu_vce_cs_reloc (stable-fixes).\n- drm/amdgpu: add error handle to avoid out-of-bounds (stable-fixes).\n- drm/amdgpu: avoid using null object of framebuffer (stable-fixes).\n- drm/amdgpu: fix UBSAN warning in kv_dpm.c (stable-fixes).\n- drm/amdgpu: fix locking scope when flushing tlb (stable-fixes).\n- drm/amdgpu: fix the warning about the expression (int)size - len (stable-fixes).\n- drm/amdgpu: fix uninitialized scalar variable warning (stable-fixes).\n- drm/amdgpu: init microcode chip name from ip versions (stable-fixes).\n- drm/amdgpu: silence UBSAN warning (stable-fixes).\n- drm/amdkfd: Add VRAM accounting for SVM migration (stable-fixes).\n- drm/amdkfd: Fix CU Masking for GFX 9.4.3 (git-fixes).\n- drm/amdkfd: Flush the process wq before creating a kfd_process (stable-fixes).\n- drm/amdkfd: Let VRAM allocations go to GTT domain on small APUs (stable-fixes).\n- drm/arm/komeda: Fix komeda probe failing if there are no links in the secondary pipeline (git-fixes).\n- drm/bridge/panel: Fix runtime warning on panel bridge release (git-fixes).\n- drm/bridge: it6505: fix hibernate to resume no display issue (git-fixes).\n- drm/bridge: samsung-dsim: Set P divider based on min/max of fin pll (git-fixes).\n- drm/dp_mst: Fix all mstb marked as not probed after suspend/resume (git-fixes).\n- drm/drm_file: Fix pid refcounting race (git-fixes).\n- drm/etnaviv: fix DMA direction handling for cached RW buffers (git-fixes).\n- drm/etnaviv: fix tx clock gating on some GC7000 variants (stable-fixes).\n- drm/exynos/vidi: fix memory leak in .get_modes() (stable-fixes).\n- drm/exynos: dp: drop driver owner initialization (stable-fixes).\n- drm/exynos: hdmi: report safe 640x480 mode as a fallback when no EDID found (git-fixes).\n- drm/fbdev-dma: Fix framebuffer mode for big endian devices (git-fixes).\n- drm/fbdev-dma: Only set smem_start is enable per module option (git-fixes).\n- drm/fbdev-generic: Fix framebuffer on big endian devices (git-fixes).\n- drm/gma500: fix null pointer dereference in cdv_intel_lvds_get_modes (git-fixes).\n- drm/gma500: fix null pointer dereference in psb_intel_lvds_get_modes (git-fixes).\n- drm/i915/dp: Do not switch the LTTPR mode on an active link (git-fixes).\n- drm/i915/gt: Do not consider preemption during execlists_dequeue for gen8 (git-fixes).\n- drm/i915/gt: Fix potential UAF by revoke of fence registers (git-fixes).\n- drm/i915/hwmon: Get rid of devm (stable-fixes).\n- drm/i915/mso: using joiner is not possible with eDP MSO (git-fixes).\n- drm/komeda: check for error-valued pointer (git-fixes).\n- drm/lima: Mark simple_ondemand governor as softdep (git-fixes).\n- drm/lima: add mask irq callback to gp and pp (stable-fixes).\n- drm/lima: fix shared irq handling on driver remove (stable-fixes).\n- drm/lima: mask irqs in timeout path before hard reset (stable-fixes).\n- drm/mediatek: Add DRM_MODE_ROTATE_0 to rotation property (git-fixes).\n- drm/mediatek: Add OVL compatible name for MT8195 (git-fixes).\n- drm/mediatek: Add missing plane settings when async update (git-fixes).\n- drm/mediatek: Call drm_atomic_helper_shutdown() at shutdown time (stable-fixes).\n- drm/mediatek: Fix XRGB setting error in Mixer (git-fixes).\n- drm/mediatek: Fix XRGB setting error in OVL (git-fixes).\n- drm/mediatek: Fix bit depth overwritten for mtk_ovl_set bit_depth() (git-fixes).\n- drm/mediatek: Fix destination alpha error in OVL (git-fixes).\n- drm/mediatek: Remove less-than-zero comparison of an unsigned value (git-fixes).\n- drm/mediatek: Set DRM mode configs accordingly (git-fixes).\n- drm/mediatek: Support DRM plane alpha in Mixer (git-fixes).\n- drm/mediatek: Support DRM plane alpha in OVL (git-fixes).\n- drm/mediatek: Support RGBA8888 and RGBX8888 in OVL on MT8195 (git-fixes).\n- drm/mediatek: Turn off the layers with zero width or height (git-fixes).\n- drm/mediatek: Use 8-bit alpha in ETHDR (git-fixes).\n- drm/meson: fix canvas release in bind function (git-fixes).\n- drm/mgag200: Bind I2C lifetime to DRM device (git-fixes).\n- drm/mgag200: Set DDC timeout in milliseconds (git-fixes).\n- drm/mipi-dsi: Fix theoretical int overflow in mipi_dsi_dcs_write_seq() (git-fixes).\n- drm/mipi-dsi: Fix theoretical int overflow in mipi_dsi_generic_write_seq() (git-fixes).\n- drm/msm/dpu: drop validity checks for clear_pending_flush() ctl op (git-fixes).\n- drm/msm/dpu: fix encoder irq wait skip (git-fixes).\n- drm/msm/dsi: set VIDEO_COMPRESSION_MODE_CTRL_WC (git-fixes).\n- drm/msm/mdp5: Remove MDP_CAP_SRC_SPLIT from msm8x53_config (git-fixes).\n- drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_hd_modes (stable-fixes).\n- drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_ld_modes (stable-fixes).\n- drm/nouveau: do not attempt to schedule hpd_work on headless cards (git-fixes).\n- drm/nouveau: fix null pointer dereference in nouveau_connector_get_modes (git-fixes).\n- drm/panel: boe-tv101wum-nl6: Check for errors on the NOP in prepare() (git-fixes).\n- drm/panel: boe-tv101wum-nl6: If prepare fails, disable GPIO before regulators (git-fixes).\n- drm/panel: himax-hx8394: Handle errors from mipi_dsi_dcs_set_display_on() better (git-fixes).\n- drm/panel: ilitek-ili9881c: Fix warning with GPIO controllers that sleep (stable-fixes).\n- drm/panel: ilitek-ili9882t: Check for errors on the NOP in prepare() (git-fixes).\n- drm/panel: ilitek-ili9882t: If prepare fails, disable GPIO before regulators (git-fixes).\n- drm/panel: simple: Add missing display timing flags for KOE TX26D202VM0BWA (git-fixes).\n- drm/panel: sitronix-st7789v: Add check for of_drm_get_panel_orientation (git-fixes).\n- drm/panfrost: Mark simple_ondemand governor as softdep (git-fixes).\n- drm/qxl: Add check for drm_cvt_mode (git-fixes).\n- drm/radeon/radeon_display: Decrease the size of allocated memory (stable-fixes).\n- drm/radeon: check bo_va-\u003ebo is non-NULL before using it (stable-fixes).\n- drm/radeon: fix UBSAN warning in kv_dpm.c (stable-fixes).\n- drm/rockchip: vop2: Fix the port mux of VP2 (git-fixes).\n- drm/sun4i: hdmi: Convert encoder to atomic (stable-fixes).\n- drm/sun4i: hdmi: Move mode_set into enable (stable-fixes).\n- drm/ttm: Always take the bo delayed cleanup path for imported bos (git-fixes).\n- drm/udl: Remove DRM_CONNECTOR_POLL_HPD (git-fixes).\n- drm/vmwgfx: 3D disabled should not effect STDU memory limits (git-fixes).\n- drm/vmwgfx: Do not memcmp equivalent pointers (git-fixes).\n- drm/vmwgfx: Filter modes which exceed graphics memory (git-fixes).\n- drm/vmwgfx: Fix missing HYPERVISOR_GUEST dependency (stable-fixes).\n- drm: panel-orientation-quirks: Add quirk for Aya Neo KUN (stable-fixes).\n- drm: panel-orientation-quirks: Add quirk for Valve Galileo (stable-fixes).\n- drm: zynqmp_dpsub: Fix an error handling path in zynqmp_dpsub_probe() (git-fixes).\n- drm: zynqmp_kms: Fix AUX bus not getting unregistered (git-fixes).\n- eeprom: at24: Probe for DDR3 thermal sensor in the SPD case (stable-fixes).\n- eeprom: digsy_mtc: Fix 93xx46 driver probe failure (git-fixes).\n- efi/x86: Free EFI memory map only when installing a new one (git-fixes).\n- erofs: ensure m_llen is reset to 0 if metadata is invalid (git-fixes).\n- exfat: fix potential deadlock on __exfat_get_dentry_set (git-fixes).\n- f2fs: fix error path of __f2fs_build_free_nids (git-fixes).\n- filelock: fix potential use-after-free in posix_lock_inode (git-fixes).\n- firmware: cs_dsp: Fix overflow checking of wmfw header (git-fixes).\n- firmware: cs_dsp: Prevent buffer overrun when processing V2 alg headers (git-fixes).\n- firmware: cs_dsp: Return error if block header overflows file (git-fixes).\n- firmware: cs_dsp: Use strnlen() on name fields in V1 wmfw files (git-fixes).\n- firmware: cs_dsp: Validate payload length before processing block (git-fixes).\n- firmware: dmi: Stop decoding on broken entry (stable-fixes).\n- firmware: psci: Fix return value from psci_system_suspend() (git-fixes).\n- firmware: turris-mox-rwtm: Do not complete if there are no waiters (git-fixes).\n- firmware: turris-mox-rwtm: Fix checking return value of wait_for_completion_timeout() (git-fixes).\n- firmware: turris-mox-rwtm: Initialize completion before mailbox (git-fixes).\n- fpga: dfl-pci: add PCI subdevice ID for Intel D5005 card (stable-fixes).\n- fs/file: fix the check in find_next_fd() (git-fixes).\n- fs/pipe: Fix lockdep false-positive in watchqueue pipe_write() (git-fixes).\n- fuse: verify {g,u}id mount options correctly (bsc#1228193).\n- genirq/irqdesc: Prevent use-after-free in irq_find_at_or_after() (git-fixes).\n- gfs2: Do not forget to complete delayed withdraw (git-fixes).\n- gfs2: Fix \u0027ignore unlock failures after withdraw\u0027 (git-fixes).\n- gfs2: Fix invalid metadata access in punch_hole (git-fixes).\n- gfs2: Get rid of gfs2_alloc_blocks generation parameter (git-fixes).\n- gfs2: Rename gfs2_lookup_{ simple =\u003e meta } (git-fixes).\n- gfs2: Use mapping-\u003egfp_mask for metadata inodes (git-fixes).\n- gfs2: convert to ctime accessor functions (git-fixes).\n- gpio: davinci: Validate the obtained number of IRQs (git-fixes).\n- gpio: lpc32xx: fix module autoloading (stable-fixes).\n- gpio: mc33880: Convert comma to semicolon (git-fixes).\n- gpio: pca953x: fix pca953x_irq_bus_sync_unlock race (stable-fixes).\n- gpio: tqmx86: fix broken IRQ_TYPE_EDGE_BOTH interrupt type (git-fixes).\n- gpio: tqmx86: fix typo in Kconfig label (git-fixes).\n- gpio: tqmx86: introduce shadow register for GPIO output value (git-fixes).\n- gpio: tqmx86: store IRQ trigger type and unmask status separately (git-fixes).\n- gpiolib: cdev: Disallow reconfiguration without direction (uAPI v1) (git-fixes).\n- hfsplus: fix to avoid false alarm of circular locking (git-fixes).\n- hfsplus: fix uninit-value in copy_name (git-fixes).\n- hpet: Support 32-bit userspace (git-fixes).\n- hwmon: (adt7475) Fix default duty on fan is disabled (git-fixes).\n- hwmon: (max6697) Fix swapped temp{1,8} critical alarms (git-fixes).\n- hwmon: (max6697) Fix underflow when writing limit attributes (git-fixes).\n- hwrng: amd - Convert PCIBIOS_* return codes to errnos (git-fixes).\n- hwrng: core - Fix wrong quality calculation at hw rng registration (git-fixes).\n- i2c: at91: Fix the functionality flags of the slave-only interface (git-fixes).\n- i2c: designware: Fix the functionality flags of the slave-only interface (git-fixes).\n- i2c: i801: Annotate apanel_addr as __ro_after_init (stable-fixes).\n- i2c: mark HostNotify target address as used (git-fixes).\n- i2c: ocores: set IACK bit after core is enabled (git-fixes).\n- i2c: pnx: Fix potential deadlock warning from del_timer_sync() call in isr (git-fixes).\n- i2c: rcar: bring hardware to known state when probing (git-fixes).\n- i2c: testunit: avoid re-issued work after read message (git-fixes).\n- i2c: testunit: correct Kconfig description (git-fixes).\n- i2c: testunit: discard write requests while old command is running (git-fixes).\n- i2c: testunit: do not erase registers after STOP (git-fixes).\n- i40e: fix: remove needless retries of NVM update (bsc#1227736).\n- iio: Fix the sorting functionality in iio_gts_build_avail_time_table (git-fixes).\n- iio: accel: fxls8962af: select IIO_BUFFER \u0026 IIO_KFIFO_BUF (git-fixes).\n- iio: accel: mxc4005: Reset chip on probe() and resume() (stable-fixes).\n- iio: accel: mxc4005: allow module autoloading via OF compatible (stable-fixes).\n- iio: adc: ad7266: Fix variable checking bug (git-fixes).\n- iio: adc: ad9467: fix scan type sign (git-fixes).\n- iio: adc: ad9467: use chip_info variables instead of array (stable-fixes).\n- iio: adc: ad9467: use spi_get_device_match_data() (stable-fixes).\n- iio: chemical: bme680: Fix calibration data variable (git-fixes).\n- iio: chemical: bme680: Fix overflows in compensate() functions (git-fixes).\n- iio: chemical: bme680: Fix pressure value output (git-fixes).\n- iio: chemical: bme680: Fix sensor data read operation (git-fixes).\n- iio: dac: ad5592r: fix temperature channel scaling value (git-fixes).\n- iio: frequency: adrf6780: rm clk provider include (git-fixes).\n- iio: imu: inv_icm42600: delete unneeded update watermark call (git-fixes).\n- iio: pressure: bmp280: Fix BMP580 temperature reading (stable-fixes).\n- iio: pressure: fix some word spelling errors (stable-fixes).\n- iio: xilinx-ams: Do not include ams_ctrl_channels in scan_mask (git-fixes).\n- input: Add event code for accessibility key (stable-fixes).\n- input: Add support for \u0027Do Not Disturb\u0027 (stable-fixes).\n- intel_th: pci: Add Granite Rapids SOC support (stable-fixes).\n- intel_th: pci: Add Granite Rapids support (stable-fixes).\n- intel_th: pci: Add Lunar Lake support (stable-fixes).\n- intel_th: pci: Add Meteor Lake-S CPU support (stable-fixes).\n- intel_th: pci: Add Meteor Lake-S support (stable-fixes).\n- intel_th: pci: Add Sapphire Rapids SOC support (stable-fixes).\n- interconnect: qcom: qcm2290: Fix mas_snoc_bimc RPM master ID (git-fixes).\n- io-wq: write next_work before dropping acct_lock (git-fixes).\n- io_uring/io-wq: Use set_bit() and test_bit() at worker-\u003eflags (git-fixes).\n- io_uring/io-wq: avoid garbage value of \u0027match\u0027 in io_wq_enqueue() (git-fixes).\n- io_uring/kbuf: get rid of bl-\u003eis_ready (git-fixes).\n- io_uring/kbuf: get rid of lower BGID lists (git-fixes).\n- io_uring/kbuf: protect io_buffer_list teardown with a reference (git-fixes). Reuses a padding space in the structure.\n- io_uring/kbuf: rename is_mapped (git-fixes).\n- io_uring/net: correct the type of variable (git-fixes).\n- io_uring/net: correctly handle multishot recvmsg retry setup (git-fixes).\n- io_uring/net: fix sendzc lazy wake polling (git-fixes).\n- io_uring/net: move receive multishot out of the generic msghdr path (git-fixes).\n- io_uring/net: restore msg_control on sendzc retry (git-fixes).\n- io_uring/net: unify how recvmsg and sendmsg copy in the msghdr (git-fixes).\n- io_uring/rsrc: do not lock while !TASK_RUNNING (git-fixes).\n- io_uring/rsrc: fix incorrect assignment of iter-\u003enr_segs in io_import_fixed (git-fixes).\n- io_uring/rw: do not allow multishot reads without NOWAIT support (git-fixes).\n- io_uring/rw: return IOU_ISSUE_SKIP_COMPLETE for multishot retry (git-fixes).\n- io_uring/sqpoll: work around a potential audit memory leak (git-fixes).\n- io_uring/unix: drop usage of io_uring socket (git-fixes).\n- io_uring: Fix io_cqring_wait() not restoring sigmask on get_timespec64() failure (git-fixes).\n- io_uring: clean rings on NO_MMAP alloc fail (git-fixes).\n- io_uring: clear opcode specific data for an early failure (git-fixes).\n- io_uring: do not save/restore iowait state (git-fixes).\n- io_uring: fail NOP if non-zero op flags is passed in (git-fixes).\n- io_uring: fix io_queue_proc modifying req-\u003eflags (git-fixes).\n- io_uring: fix mshot io-wq checks (git-fixes).\n- io_uring: fix mshot read defer taskrun cqe posting (git-fixes).\n- io_uring: fix poll_remove stalled req completion (git-fixes).\n- io_uring: remove looping around handling traditional task_work (git-fixes).\n- io_uring: remove unconditional looping in local task_work handling (git-fixes).\n- io_uring: use private workqueue for exit work (git-fixes).\n- io_uring: use the right type for work_llist empty check (git-fixes).\n- iommu/amd: Enhance def_domain_type to handle untrusted device (git-fixes).\n- iommu/amd: Fix panic accessing amd_iommu_enable_faulting (bsc#1224767).\n- iommu/amd: Fix sysfs leak in iommu init (git-fixes).\n- iommu/arm-smmu-v3: Free MSIs in case of ENOMEM (git-fixes).\n- iommu/vt-d: Allocate DMAR fault interrupts locally (bsc#1224767).\n- iommu/vt-d: Fix WARN_ON in iommu probe path (git-fixes).\n- iommu/vt-d: Improve ITE fault handling if target device isn\u0027t present (git-fixes).\n- iommu/vt-d: Use rbtree to track iommu probed devices (git-fixes).\n- iommu: Fix compilation without CONFIG_IOMMU_INTEL (git-fixes).\n- iommu: Return right value in iommu_sva_bind_device() (git-fixes).\n- iommu: Undo pasid attachment only for the devices that have succeeded (git-fixes).\n- iommu: mtk: fix module autoloading (git-fixes).\n- ipmi: ssif_bmc: prevent integer overflow on 32bit systems (git-fixes).\n- ipvs: Fix checksumming on GSO of SCTP packets (bsc#1221958)\n- iwlwifi: fw: fix more kernel-doc warnings (bsc#1227149).\n- iwlwifi: mvm: Drop unused fw_trips_index[] from iwl_mvm_thermal_device (bsc#1227149).\n- iwlwifi: mvm: Populate trip table before registering thermal zone (bsc#1227149).\n- iwlwifi: mvm: Use for_each_thermal_trip() for walking trip points (bsc#1227149).\n- jffs2: Fix potential illegal address access in jffs2_free_inode (git-fixes).\n- jfs: Fix array-index-out-of-bounds in diFree (git-fixes).\n- jfs: xattr: fix buffer overflow for invalid xattr (bsc#1227383).\n- kABI fix of KVM: x86/pmu: Prioritize VMX interception over\n- kABI workaround for sof_ipc_pcm_ops (git-fixes).\n- kABI workaround for wireless updates (bsc#1227149).\n- kABI: bpf: verifier kABI workaround (bsc#1225903).\n- kabi/severities: Ignore io_uring internal symbols\n- kabi/severities: cleanup and update for WiFi driver entries (bsc#1227149)\n- kabi/severities: cover all ath/* drivers (bsc#1227149) All symbols in ath/* network drivers are local and can be ignored\n- kabi/severities: cover all mt76 modules (bsc#1227149)\n- kabi/severities: ignore amd pds internal symbols\n- kabi/severities: ignore kABI changes Realtek WiFi drivers (bsc#1227149) All those symbols are local and used for its own helpers\n- kabi: Use __iowriteXX_copy_inlined for in-kernel modules (bsc#1226502)\n- kbuild: Fix build target deb-pkg: ln: failed to create hard link (git-fixes).\n- kbuild: Install dtb files as 0644 in Makefile.dtbinst (git-fixes).\n- kbuild: avoid build error when single DTB is turned into composite DTB (git-fixes).\n- kbuild: doc: Update default INSTALL_MOD_DIR from extra to updates (git-fixes).\n- kconfig: doc: fix a typo in the note about \u0027imply\u0027 (git-fixes).\n- kconfig: fix comparison to constant symbols, \u0027m\u0027, \u0027n\u0027 (git-fixes).\n- kconfig: gconf: give a proper initial state to the Save button (stable-fixes).\n- kconfig: remove wrong expr_trans_bool() (stable-fixes).\n- kcov: do not lose track of remote references during softirqs (git-fixes).\n- kernel-binary: vdso: Own module_dir\n- kernel-doc: fix struct_group_tagged() parsing (git-fixes).\n- kheaders: explicitly define file modes for archived headers (stable-fixes).\n- knfsd: LOOKUP can return an illegal error value (git-fixes).\n- kobject_uevent: Fix OOB access within zap_modalias_env() (git-fixes).\n- kprobe/ftrace: bail out if ftrace was killed (git-fixes).\n- kprobe/ftrace: fix build error due to bad function definition (git-fixes).\n- kunit: Fix checksum tests on big endian CPUs (git-fixed).\n- leds: flash: leds-qcom-flash: Test the correct variable in init (git-fixes).\n- leds: mt6360: Fix memory leak in mt6360_init_isnk_properties() (git-fixes).\n- leds: ss4200: Convert PCIBIOS_* return codes to errnos (git-fixes).\n- leds: trigger: Unregister sysfs attributes before calling deactivate() (git-fixes).\n- leds: triggers: Flush pending brightness before activating trigger (git-fixes).\n- lib: objagg: Fix general protection fault (git-fixes).\n- lib: objagg: Fix spelling (git-fixes).\n- lib: test_objagg: Fix spelling (git-fixes).\n- libceph: fix race between delayed_work() and ceph_monc_stop() (bsc#1228192).\n- mISDN: Fix a use after free in hfcmulti_tx() (git-fixes).\n- mISDN: fix MISDN_TIME_STAMP handling (git-fixes).\n- mac802154: fix time calculation in ieee802154_configure_durations() (git-fixes).\n- mailbox: mtk-cmdq: Move devm_mbox_controller_register() after devm_pm_runtime_enable() (git-fixes).\n- media: dvb-frontends: tda10048: Fix integer overflow (stable-fixes).\n- media: dvb-frontends: tda18271c2dd: Remove casting during div (stable-fixes).\n- media: dvb-usb: Fix unexpected infinite loop in dvb_usb_read_remote_control() (git-fixes).\n- media: dvb-usb: dib0700_devices: Add missing release_firmware() (stable-fixes).\n- media: dvb: as102-fe: Fix as10x_register_addr packing (stable-fixes).\n- media: dvbdev: Initialize sbuf (stable-fixes).\n- media: dw2102: Do not translate i2c read into write (stable-fixes).\n- media: dw2102: fix a potential buffer overflow (git-fixes).\n- media: i2c: Fix imx412 exposure control (git-fixes).\n- media: imon: Fix race getting ictx-\u003elock (git-fixes).\n- media: imx-jpeg: Drop initial source change event if capture has been setup (git-fixes).\n- media: imx-jpeg: Remove some redundant error logs (git-fixes).\n- media: imx-pxp: Fix ERR_PTR dereference in pxp_probe() (git-fixes).\n- media: lgdt3306a: Add a check against null-pointer-def (stable-fixes).\n- media: mxl5xx: Move xpt structures off stack (stable-fixes).\n- media: pci: ivtv: Add check for DMA map result (git-fixes).\n- media: radio-shark2: Avoid led_names truncations (git-fixes).\n- media: rcar-vin: Fix YUYV8_1X16 handling for CSI-2 (git-fixes).\n- media: renesas: vsp1: Fix _irqsave and _irq mix (git-fixes).\n- media: renesas: vsp1: Store RPF partition configuration per RPF instance (git-fixes).\n- media: s2255: Use refcount_t instead of atomic_t for num_channels (stable-fixes).\n- media: uvcvideo: Fix integer overflow calculating timestamp (git-fixes).\n- media: uvcvideo: Override default flags (git-fixes).\n- media: v4l2-core: hold videodev_lock until dev reg, finishes (stable-fixes).\n- media: v4l: async: Fix NULL pointer dereference in adding ancillary links (git-fixes).\n- media: v4l: subdev: Fix typo in documentation (git-fixes).\n- media: venus: fix use after free in vdec_close (git-fixes).\n- media: venus: flush all buffers in output plane streamoff (git-fixes).\n- mei: demote client disconnect warning on suspend to debug (stable-fixes).\n- mei: me: release irq in mei_me_pci_resume error path (git-fixes).\n- mfd: omap-usb-tll: Use struct_size to allocate tll (git-fixes).\n- mfd: pm8008: Fix regmap irq chip initialisation (git-fixes).\n- misc: fastrpc: Avoid updating PD type for capability request (git-fixes).\n- misc: fastrpc: Copy the complete capability structure to user (git-fixes).\n- misc: fastrpc: Fix DSP capabilities request (git-fixes).\n- misc: fastrpc: Fix memory leak in audio daemon attach operation (git-fixes).\n- misc: fastrpc: Fix ownership reassignment of remote heap (git-fixes).\n- misc: fastrpc: Restrict untrusted app to attach to privileged PD (git-fixes).\n- misc: microchip: pci1xxxx: Fix a memory leak in the error handling of gp_aux_bus_probe() (git-fixes).\n- misc: microchip: pci1xxxx: fix double free in the error handling of gp_aux_bus_probe() (git-fixes).\n- mmc: core: Add mmc_gpiod_set_cd_config() function (stable-fixes).\n- mmc: core: Do not force a retune before RPMB switch (stable-fixes).\n- mmc: sdhci-acpi: Add quirk to enable pull-up on the card-detect GPIO on Asus T100TA (git-fixes).\n- mmc: sdhci-acpi: Disable write protect detection on Toshiba WT10-A (stable-fixes).\n- mmc: sdhci-acpi: Fix Lenovo Yoga Tablet 2 Pro 1380 sdcard slot not working (stable-fixes).\n- mmc: sdhci-acpi: Sort DMI quirks alphabetically (stable-fixes).\n- mmc: sdhci-brcmstb: check R1_STATUS for erase/trim/discard (git-fixes).\n- mmc: sdhci-pci: Convert PCIBIOS_* return codes to errnos (git-fixes).\n- mmc: sdhci: Add support for \u0027Tuning Error\u0027 interrupts (stable-fixes).\n- mmc: sdhci: Do not invert write-protect twice (git-fixes).\n- mmc: sdhci: Do not lock spinlock around mmc_gpio_get_ro() (git-fixes).\n- module: do not ignore sysfs_create_link() failures (git-fixes).\n- mt76: connac: move more mt7921/mt7915 mac shared code in connac lib (bsc#1227149).\n- mt76: mt7996: rely on mt76_sta_stats in mt76_wcid (bsc#1227149).\n- mtd: partitions: redboot: Added conversion of operands to a larger type (stable-fixes).\n- mtd: rawnand: Bypass a couple of sanity checks during NAND identification (git-fixes).\n- mtd: rawnand: Ensure ECC configuration is propagated to upper layers (git-fixes).\n- mtd: rawnand: Fix the nand_read_data_op() early check (git-fixes).\n- mtd: rawnand: rockchip: ensure NVDDR timings are rejected (git-fixes).\n- net/dcb: check for detached device before executing callbacks (bsc#1215587).\n- net/mlx5: Fix MTMP register capability offset in MCAM register (git-fixes).\n- net: can: j1939: Initialize unused data in j1939_send_one() (git-fixes).\n- net: can: j1939: enhanced error handling for tightly received RTS messages in xtp_rx_rts_session_new (git-fixes).\n- net: can: j1939: recover socket queue on CAN bus error during BAM transmission (git-fixes).\n- net: ena: Fix redundant device NUMA node override (jsc#PED-8688).\n- net: ethernet: mtk_wed: introduce mtk_wed_buf structure (bsc#1227149).\n- net: ethernet: mtk_wed: rename mtk_rxbm_desc in mtk_wed_bm_desc (bsc#1227149).\n- net: fill in MODULE_DESCRIPTION()s in kuba@\u0027s modules (bsc#1227149).\n- net: hns3: Remove io_stop_wc() calls after __iowrite64_copy() (bsc#1226502)\n- net: lan743x: Support WOL at both the PHY and MAC appropriately (git-fixes).\n- net: lan743x: disable WOL upon resume to restore full data path operation (git-fixes).\n- net: mac802154: Fix racy device stats updates by DEV_STATS_INC() and DEV_STATS_ADD() (stable-fixes).\n- net: mana: Enable MANA driver on ARM64 with 4K page size (jsc#PED-8491).\n- net: mana: Fix possible double free in error handling path (git-fixes).\n- net: mana: Fix the extra HZ in mana_hwc_send_request (git-fixes).\n- net: phy: Micrel KSZ8061: fix errata solution not taking effect problem (git-fixes).\n- net: phy: micrel: add Microchip KSZ 9477 to the device table (git-fixes).\n- net: phy: micrel: fix KSZ9477 PHY issues after suspend/resume (git-fixes).\n- net: phy: microchip: lan87xx: reinit PHY after cable test (git-fixes).\n- net: phy: mxl-gpy: Remove interrupt mask clearing from config_init (git-fixes).\n- net: phy: phy_device: Fix PHY LED blinking code comment (git-fixes).\n- net: usb: ax88179_178a: improve link status logs (git-fixes).\n- net: usb: ax88179_178a: improve reset check (git-fixes).\n- net: usb: qmi_wwan: add Telit FN912 compositions (stable-fixes).\n- net: usb: qmi_wwan: add Telit FN920C04 compositions (git-fixes).\n- net: usb: rtl8150 fix unintiatilzed variables in rtl8150_get_link_ksettings (git-fixes).\n- nfc/nci: Add the inconsistency check between the input data length and count (stable-fixes).\n- nfs: Avoid flushing many pages with NFS_FILE_SYNC (bsc#1218442).\n- nfs: Block on write congestion (bsc#1218442).\n- nfs: Bump default write congestion size (bsc#1218442).\n- nfs: Drop pointless check from nfs_commit_release_pages() (bsc#1218442).\n- nfs: Fix up kabi after adding write_congestion_wait (bsc#1218442).\n- nfs: Handle error of rpc_proc_register() in nfs_net_init() (git-fixes).\n- nfs: Properly initialize server-\u003ewriteback (bsc#1218442).\n- nfs: drop the incorrect assertion in nfs_swap_rw() (git-fixes).\n- nfs: fix undefined behavior in nfs_block_bits() (git-fixes).\n- nfs: keep server info for remounts (git-fixes).\n- nfsd: hold a lighter-weight client reference over CB_RECALL_ANY (git-fixes).\n- nfsd: optimise recalculate_deny_mode() for a common case (bsc#1217912).\n- nilfs2: add missing check for inode numbers on directory entries (stable-fixes).\n- nilfs2: avoid undefined behavior in nilfs_cnt32_ge macro (git-fixes).\n- nilfs2: convert persistent object allocator to use kmap_local (git-fixes).\n- nilfs2: fix incorrect inode allocation from reserved inodes (git-fixes).\n- nilfs2: fix inode number range checks (stable-fixes).\n- nilfs2: fix nilfs_empty_dir() misjudgment and long loop on I/O errors (git-fixes).\n- nilfs2: fix potential hang in nilfs_detach_log_writer() (git-fixes).\n- nilfs2: return the mapped address from nilfs_get_page() (stable-fixes).\n- nouveau: add an ioctl to report vram usage (stable-fixes).\n- nouveau: add an ioctl to return vram bar size (stable-fixes).\n- nouveau: report byte usage in VRAM usage (git-fixes).\n- nvme-fabrics: short-circuit reconnect retries (bsc#1186716).\n- nvme-tcp: Export the nvme_tcp_wq to sysfs (bsc#1224049).\n- nvme/tcp: Add wq_unbound modparam for nvme_tcp_wq (bsc#1224049).\n- nvme: cancel pending I/O if nvme controller is in terminal state (bsc#1226503).\n- nvme: do not retry authentication failures (bsc#1186716).\n- nvme: find numa distance only if controller has valid numa id (git-fixes).\n- nvme: fix nvme_pr_* status code parsing (git-fixes).\n- nvme: return kernel error codes for admin queue connect (bsc#1186716).\n- nvmet-auth: replace pr_debug() with pr_err() to report an error (git-fixes).\n- nvmet-auth: return the error code to the nvmet_auth_host_hash() callers (git-fixes).\n- nvmet-passthru: propagate status from id override functions (git-fixes).\n- nvmet-tcp: fix possible memory leak when tearing down a controller (git-fixes).\n- nvmet: fix nvme status code when namespace is disabled (git-fixes).\n- nvmet: lock config semaphore when accessing DH-HMAC-CHAP key (bsc#1186716).\n- nvmet: prevent sprintf() overflow in nvmet_subsys_nsid_exists() (git-fixes).\n- nvmet: return DHCHAP status codes from nvmet_setup_auth() (bsc#1186716).\n- ocfs2: adjust enabling place for la window (bsc#1219224).\n- ocfs2: fix DIO failure due to insufficient transaction credits (git-fixes).\n- ocfs2: fix races between hole punching and AIO+DIO (git-fixes).\n- ocfs2: fix sparse warnings (bsc#1219224).\n- ocfs2: improve write IO performance when fragmentation is high (bsc#1219224).\n- ocfs2: speed up chain-list searching (bsc#1219224).\n- ocfs2: use coarse time for new created files (git-fixes).\n- orangefs: fix out-of-bounds fsid access (git-fixes).\n- pNFS/filelayout: fixup pNfs allocation modes (git-fixes).\n- phy: cadence-torrent: Check return value on register read (git-fixes).\n- pinctrl: core: fix possible memory leak when pinctrl_enable() fails (git-fixes).\n- pinctrl: fix deadlock in create_pinctrl() when handling -EPROBE_DEFER (git-fixes).\n- pinctrl: freescale: mxs: Fix refcount of child (git-fixes).\n- pinctrl: qcom: spmi-gpio: drop broken pm8008 support (git-fixes).\n- pinctrl: renesas: r8a779g0: FIX PWM suffixes (git-fixes).\n- pinctrl: renesas: r8a779g0: Fix (H)SCIF1 suffixes (git-fixes).\n- pinctrl: renesas: r8a779g0: Fix (H)SCIF3 suffixes (git-fixes).\n- pinctrl: renesas: r8a779g0: Fix CANFD5 suffix (git-fixes).\n- pinctrl: renesas: r8a779g0: Fix FXR_TXEN[AB] suffixes (git-fixes).\n- pinctrl: renesas: r8a779g0: Fix IRQ suffixes (git-fixes).\n- pinctrl: renesas: r8a779g0: Fix TCLK suffixes (git-fixes).\n- pinctrl: renesas: r8a779g0: Fix TPU suffixes (git-fixes).\n- pinctrl: rockchip: fix pinmux bits for RK3328 GPIO2-B pins (git-fixes).\n- pinctrl: rockchip: fix pinmux bits for RK3328 GPIO3-B pins (git-fixes).\n- pinctrl: rockchip: fix pinmux reset in rockchip_pmx_set (git-fixes).\n- pinctrl: rockchip: update rk3308 iomux routes (git-fixes).\n- pinctrl: rockchip: use dedicated pinctrl type for RK3328 (git-fixes).\n- pinctrl: single: fix possible memory leak when pinctrl_enable() fails (git-fixes).\n- pinctrl: ti: ti-iodelay: fix possible memory leak when pinctrl_enable() fails (git-fixes).\n- platform/chrome: cros_ec_debugfs: fix wrong EC message version (git-fixes).\n- platform/x86/intel/tpmi: Handle error from tpmi_process_info() (stable-fixes).\n- platform/x86: ISST: Add Grand Ridge to HPM CPU list (stable-fixes).\n- platform/x86: dell-smbios: Fix wrong token data in sysfs (git-fixes).\n- platform/x86: lg-laptop: Change ACPI device id (stable-fixes).\n- platform/x86: lg-laptop: Remove LGEX0815 hotkey handling (stable-fixes).\n- platform/x86: lg-laptop: Use ACPI device handle when evaluating WMAB/WMBB (stable-fixes).\n- platform/x86: thinkpad_acpi: Take hotkey_mutex during hotkey_exit() (git-fixes).\n- platform/x86: toshiba_acpi: Add quirk for buttons on Z830 (stable-fixes).\n- platform/x86: toshiba_acpi: Fix array out-of-bounds access (git-fixes).\n- platform/x86: toshiba_acpi: Fix quickstart quirk handling (git-fixes).\n- platform/x86: touchscreen_dmi: Add info for GlobalSpace SolT IVW 11.6\u0027 tablet (stable-fixes).\n- platform/x86: touchscreen_dmi: Add info for the EZpad 6s Pro (stable-fixes).\n- platform/x86: wireless-hotkey: Add support for LG Airplane Button (stable-fixes).\n- power: supply: ab8500: Fix error handling when calling iio_read_channel_processed() (git-fixes).\n- power: supply: cros_usbpd: provide ID table for avoiding fallback match (stable-fixes).\n- power: supply: ingenic: Fix some error handling paths in ingenic_battery_get_property() (git-fixes).\n- powerpc/64s/radix/kfence: map __kfence_pool at page granularity (bsc#1223570 ltc#205770).\n- powerpc/prom: Add CPU info to hardware description string later (bsc#1215199).\n- powerpc/pseries: Fix scv instruction crash with kexec (bsc#1194869).\n- powerpc/rtas: Prevent Spectre v1 gadget construction in sys_rtas() (bsc#1227487).\n- pwm: sti: Prepare removing pwm_chip from driver data (stable-fixes).\n- pwm: sti: Simplify probe function using devm functions (git-fixes).\n- pwm: stm32: Always do lazy disabling (git-fixes).\n- regmap-i2c: Subtract reg size from max_write (stable-fixes).\n- regulator: bd71815: fix ramp values (git-fixes).\n- regulator: core: Fix modpost error \u0027regulator_get_regmap\u0027 undefined (git-fixes).\n- regulator: irq_helpers: duplicate IRQ name (stable-fixes).\n- regulator: vqmmc-ipq4019: fix module autoloading (stable-fixes).\n- remoteproc: imx_rproc: Fix refcount mistake in imx_rproc_addr_init (git-fixes).\n- remoteproc: imx_rproc: Skip over memory region when node value is NULL (git-fixes).\n- remoteproc: k3-r5: Fix IPC-only mode detection (git-fixes).\n- remoteproc: stm32_rproc: Fix mailbox interrupts queuing (git-fixes).\n- rpcrdma: fix handling for RDMA_CM_EVENT_DEVICE_REMOVAL (git-fixes).\n- rtc: abx80x: Fix return value of nvmem callback on read (git-fixes).\n- rtc: cmos: Fix return value of nvmem callbacks (git-fixes).\n- rtc: interface: Add RTC offset to alarm after fix-up (git-fixes).\n- rtc: isl1208: Fix return value of nvmem callbacks (git-fixes).\n- s390/cpacf: Make use of invalid opcode produce a link error (git-fixes bsc#1227072).\n- s390: Implement __iowrite32_copy() (bsc#1226502)\n- s390: Stop using weak symbols for __iowrite64_copy() (bsc#1226502)\n- saa7134: Unchecked i2c_transfer function result fixed (git-fixes).\n- sched/core: Fix incorrect initialization of the \u0027burst\u0027 parameter in cpu_max_write() (bsc#1226791).\n- selftests/bpf: test case for callback_depth states pruning logic (bsc#1225903).\n- selftests/bpf: test if state loops are detected in a tricky case (bsc#1225903).\n- selftests/bpf: test widening for iterating callbacks (bsc#1225903).\n- selftests/bpf: tests for iterating callbacks (bsc#1225903).\n- selftests/bpf: tests with delayed read/precision makrs in loop body (bsc#1225903).\n- selftests/bpf: track string payload offset as scalar in strobemeta (bsc#1225903).\n- selftests/bpf: track tcp payload offset as scalar in xdp_synproxy (bsc#1225903).\n- selftests/mm: compaction_test: fix incorrect write of zero to nr_hugepages (git-fixes).\n- selftests/mm: fix build warnings on ppc64 (stable-fixes).\n- selftests/sigaltstack: Fix ppc64 GCC build (git-fixes).\n- selftests: fix OOM in msg_zerocopy selftest (git-fixes).\n- selftests: make order checking verbose in msg_zerocopy selftest (git-fixes).\n- selftests: mptcp: add ms units for tc-netem delay (stable-fixes).\n- selftests: sud_test: return correct emulated syscall value on RISC-V (stable-fixes).\n- serial: bcm63xx-uart: fix tx after conversion to uart_port_tx_limited() (git-fixes).\n- serial: core: introduce uart_port_tx_limited_flags() (git-fixes).\n- serial: exar: adding missing CTI and Exar PCI ids (stable-fixes).\n- serial: imx: Introduce timeout when waiting on transmitter empty (stable-fixes).\n- serial: imx: Raise TX trigger level to 8 (stable-fixes).\n- smb3: allow controlling length of time directory entries are cached with dir leases (git-fixes, bsc#1225172).\n- smb3: allow controlling maximum number of cached directories (git-fixes, bsc#1225172).\n- smb3: do not start laundromat thread when dir leases disabled (git-fixes, bsc#1225172).\n- smb: client: do not start laundromat thread on nohandlecache (git-fixes, bsc#1225172).\n- smb: client: make laundromat a delayed worker (git-fixes, bsc#1225172).\n- smb: client: prevent new fids from being removed by laundromat (git-fixes, bsc#1225172).\n- soc: qcom: pdr: fix parsing of domains lists (git-fixes).\n- soc: qcom: pdr: protect locator_addr with the main mutex (git-fixes).\n- soc: qcom: pmic_glink: Handle the return value of pmic_glink_init (git-fixes).\n- soc: qcom: rpmh-rsc: Ensure irqs are not disabled by rpmh_rsc_send_data() callers (git-fixes).\n- soc: ti: wkup_m3_ipc: Send NULL dummy message instead of pointer message (stable-fixes).\n- soc: xilinx: rename cpu_number1 to dummy_cpu_number (git-fixes).\n- soundwire: cadence: fix invalid PDI offset (stable-fixes).\n- spi: atmel-quadspi: Add missing check for clk_prepare (git-fixes).\n- spi: cadence: Ensure data lines set to low during dummy-cycle period (stable-fixes).\n- spi: imx: Do not expect DMA for i.MX{25,35,50,51,53} cspi devices (stable-fixes).\n- spi: microchip-core: defer asserting chip select until just before write to TX FIFO (git-fixes).\n- spi: microchip-core: ensure TX and RX FIFOs are empty at start of a transfer (git-fixes).\n- spi: microchip-core: fix the issues in the isr (git-fixes).\n- spi: microchip-core: only disable SPI controller when register value change requires it (git-fixes).\n- spi: mux: set ctlr-\u003ebits_per_word_mask (stable-fixes).\n- spi: spi-microchip-core: Fix the number of chip selects supported (git-fixes).\n- spi: spidev: add correct compatible for Rohm BH2228FV (git-fixes).\n- spi: stm32: qspi: Clamp stm32_qspi_get_mode() output to CCR_BUSWIDTH_4 (git-fixes).\n- spi: stm32: qspi: Fix dual flash mode sanity test in stm32_qspi_setup() (git-fixes).\n- ssb: Fix potential NULL pointer dereference in ssb_device_uevent() (stable-fixes).\n- struct acpi_ec kABI workaround (git-fixes).\n- sunrpc: fix NFSACL RPC retry on soft mount (git-fixes).\n- tcp: Dump bound-only sockets in inet_diag (bsc#1204562).\n- thermal/drivers/mediatek/lvts_thermal: Check NULL ptr on lvts_data (stable-fixes).\n- thermal/drivers/mediatek/lvts_thermal: Return error in case of invalid efuse data (git-fixes).\n- thunderbolt: debugfs: Fix margin debugfs node creation condition (git-fixes).\n- tools/memory-model: Fix bug in lock.cat (git-fixes).\n- tools/power turbostat: Remember global max_die_id (stable-fixes).\n- tools/power/cpupower: Fix Pstate frequency reporting on AMD Family 1Ah CPUs (stable-fixes).\n- tools: ynl: do not leak mcast_groups on init error (git-fixes).\n- tools: ynl: fix handling of multiple mcast groups (git-fixes).\n- tools: ynl: make sure we always pass yarg to mnl_cb_run (git-fixes).\n- tpm_tis: Do *not* flush uninitialized work (git-fixes).\n- tracefs: Add missing lockdown check to tracefs_create_dir() (git-fixes).\n- tracing/net_sched: NULL pointer dereference in perf_trace_qdisc_reset() (git-fixes).\n- tracing: Build event generation tests only as modules (git-fixes).\n- tty: mcf: MCF54418 has 10 UARTS (git-fixes).\n- tty: n_tty: Fix buffer offsets when lookahead is used (git-fixes).\n- usb-storage: alauda: Check whether the media is initialized (git-fixes).\n- usb: atm: cxacru: fix endpoint checking in cxacru_bind() (git-fixes).\n- usb: dwc3: core: Add DWC31 version 2.00a controller (stable-fixes).\n- usb: dwc3: core: Workaround for CSR read timeout (stable-fixes).\n- usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to avoid deadlock (git-fixes).\n- usb: dwc3: pci: Do not set \u0027linux,phy_charger_detect\u0027 property on Lenovo Yoga Tab2 1380 (stable-fixes).\n- usb: dwc3: pci: add support for the Intel Panther Lake (stable-fixes).\n- usb: gadget: aspeed_udc: fix device address configuration (git-fixes).\n- usb: gadget: configfs: Prevent OOB read/write in usb_string_copy() (stable-fixes).\n- usb: gadget: function: Remove usage of the deprecated ida_simple_xx() API (stable-fixes).\n- usb: gadget: printer: SS+ support (stable-fixes).\n- usb: gadget: printer: fix races against disable (git-fixes).\n- usb: gadget: uvc: configfs: ensure guid to be valid before set (stable-fixes).\n- usb: misc: uss720: check for incompatible versions of the Belkin F5U002 (stable-fixes).\n- usb: musb: da8xx: fix a resource leak in probe() (git-fixes).\n- usb: typec: tcpm: Ignore received Hard Reset in TOGGLING state (git-fixes).\n- usb: typec: tcpm: fix use-after-free case in tcpm_register_source_caps (git-fixes).\n- usb: typec: ucsi: Ack also failed Get Error commands (git-fixes).\n- usb: typec: ucsi: Never send a lone connector change ack (stable-fixes).\n- usb: typec: ucsi: glink: fix child node release in probe function (git-fixes).\n- usb: typec: ucsi_glink: drop special handling for CCI_BUSY (stable-fixes).\n- usb: ucsi: stm32: fix command completion handling (git-fixes).\n- usb: xhci: prevent potential failure in handle_tx_event() for Transfer events without TRB (stable-fixes).\n- virtio_net: avoid data-races on dev-\u003estats fields (git-fixes).\n- virtio_net: checksum offloading handling fix (git-fixes).\n- vmlinux.lds.h: catch .bss..L* sections into BSS\u0027) (git-fixes).\n- watchdog: rzg2l_wdt: Check return status of pm_runtime_put() (git-fixes).\n- watchdog: rzg2l_wdt: Use pm_runtime_resume_and_get() (git-fixes).\n- watchdog: rzn1: Convert comma to semicolon (git-fixes).\n- wifi: add HAS_IOPORT dependencies (bsc#1227149).\n- wifi: ar5523: Remove unnecessary (void*) conversions (bsc#1227149).\n- wifi: ath10/11/12k: Use alloc_ordered_workqueue() to create ordered workqueues (bsc#1227149).\n- wifi: ath10k: Annotate struct ath10k_ce_ring with __counted_by (bsc#1227149).\n- wifi: ath10k: Convert to platform remove callback returning void (bsc#1227149).\n- wifi: ath10k: Drop checks that are always false (bsc#1227149).\n- wifi: ath10k: Drop cleaning of driver data from probe error path and remove (bsc#1227149).\n- wifi: ath10k: Fix a few spelling errors (bsc#1227149).\n- wifi: ath10k: Fix enum ath10k_fw_crash_dump_type kernel-doc (bsc#1227149).\n- wifi: ath10k: Fix htt_data_tx_completion kernel-doc warning (bsc#1227149).\n- wifi: ath10k: Remove unnecessary (void*) conversions (bsc#1227149).\n- wifi: ath10k: Remove unused struct ath10k_htc_frame (bsc#1227149).\n- wifi: ath10k: Update Qualcomm Innovation Center, Inc. copyrights (bsc#1227149).\n- wifi: ath10k: Use DECLARE_FLEX_ARRAY() for ath10k_htc_record (bsc#1227149).\n- wifi: ath10k: Use list_count_nodes() (bsc#1227149).\n- wifi: ath10k: add missing wmi_10_4_feature_mask documentation (bsc#1227149).\n- wifi: ath10k: add support to allow broadcast action frame RX (bsc#1227149).\n- wifi: ath10k: consistently use kstrtoX_from_user() functions (bsc#1227149).\n- wifi: ath10k: correctly document enum wmi_tlv_tx_pause_id (bsc#1227149).\n- wifi: ath10k: drop HTT_DATA_TX_STATUS_DOWNLOAD_FAIL (bsc#1227149).\n- wifi: ath10k: fix QCOM_RPROC_COMMON dependency (git-fixes).\n- wifi: ath10k: fix Wvoid-pointer-to-enum-cast warning (bsc#1227149).\n- wifi: ath10k: fix htt_q_state_conf \u0026 htt_q_state kernel-doc (bsc#1227149).\n- wifi: ath10k: improve structure padding (bsc#1227149).\n- wifi: ath10k: indicate to mac80211 scan complete with aborted flag for ATH10K_SCAN_STARTING state (bsc#1227149).\n- wifi: ath10k: remove ath10k_htc_record::pauload[] (bsc#1227149).\n- wifi: ath10k: remove duplicate memset() in 10.4 TDLS peer update (bsc#1227149).\n- wifi: ath10k: remove struct wmi_pdev_chanlist_update_event (bsc#1227149).\n- wifi: ath10k: remove unused template structs (bsc#1227149).\n- wifi: ath10k: replace ENOTSUPP with EOPNOTSUPP (bsc#1227149).\n- wifi: ath10k: replace deprecated strncpy with memcpy (bsc#1227149).\n- wifi: ath10k: simplify __ath10k_htt_tx_txq_recalc() (bsc#1227149).\n- wifi: ath10k: simplify ath10k_peer_create() (bsc#1227149).\n- wifi: ath10k: use flexible array in struct wmi_host_mem_chunks (bsc#1227149).\n- wifi: ath10k: use flexible array in struct wmi_tdls_peer_capabilities (bsc#1227149).\n- wifi: ath10k: use flexible arrays for WMI start scan TLVs (bsc#1227149).\n- wifi: ath11k: Add HTT stats for PHY reset case (bsc#1227149).\n- wifi: ath11k: Add coldboot calibration support for QCN9074 (bsc#1227149).\n- wifi: ath11k: Allow ath11k to boot without caldata in ftm mode (bsc#1227149).\n- wifi: ath11k: Consistently use ath11k_vif_to_arvif() (bsc#1227149).\n- wifi: ath11k: Consolidate WMI peer flags (bsc#1227149).\n- wifi: ath11k: Convert to platform remove callback returning void (bsc#1227149).\n- wifi: ath11k: Do not directly use scan_flags in struct scan_req_params (bsc#1227149).\n- wifi: ath11k: EMA beacon support (bsc#1227149).\n- wifi: ath11k: Fix a few spelling errors (bsc#1227149).\n- wifi: ath11k: Fix ath11k_htc_record flexible record (bsc#1227149).\n- wifi: ath11k: Introduce and use ath11k_sta_to_arsta() (bsc#1227149).\n- wifi: ath11k: MBSSID beacon support (bsc#1227149).\n- wifi: ath11k: MBSSID configuration during vdev create/start (bsc#1227149).\n- wifi: ath11k: MBSSID parameter configuration in AP mode (bsc#1227149).\n- wifi: ath11k: Really consistently use ath11k_vif_to_arvif() (bsc#1227149).\n- wifi: ath11k: Relocate the func ath11k_mac_bitrate_mask_num_ht_rates() and change hweight16 to hweight8 (bsc#1227149).\n- wifi: ath11k: Remove ath11k_base::bd_api (bsc#1227149).\n- wifi: ath11k: Remove cal_done check during probe (bsc#1227149).\n- wifi: ath11k: Remove obsolete struct wmi_peer_flags_map *peer_flags (bsc#1227149).\n- wifi: ath11k: Remove scan_flags union from struct scan_req_params (bsc#1227149).\n- wifi: ath11k: Remove struct ath11k::ops (bsc#1227149).\n- wifi: ath11k: Remove unneeded semicolon (bsc#1227149).\n- wifi: ath11k: Remove unused declarations (bsc#1227149).\n- wifi: ath11k: Remove unused struct ath11k_htc_frame (bsc#1227149).\n- wifi: ath11k: Send HT fixed rate in WMI peer fixed param (bsc#1227149).\n- wifi: ath11k: Split coldboot calibration hw_param (bsc#1227149).\n- wifi: ath11k: Update Qualcomm Innovation Center, Inc. copyrights (bsc#1227149).\n- wifi: ath11k: Use device_get_match_data() (bsc#1227149).\n- wifi: ath11k: Use list_count_nodes() (bsc#1227149).\n- wifi: ath11k: add WMI event debug messages (bsc#1227149).\n- wifi: ath11k: add WMI_TLV_SERVICE_EXT_TPC_REG_SUPPORT service bit (bsc#1227149).\n- wifi: ath11k: add chip id board name while searching board-2.bin for WCN6855 (bsc#1227149).\n- wifi: ath11k: add firmware-2.bin support (bsc#1227149).\n- wifi: ath11k: add handler for WMI_VDEV_SET_TPC_POWER_CMDID (bsc#1227149).\n- wifi: ath11k: add parse of transmit power envelope element (bsc#1227149).\n- wifi: ath11k: add parsing of phy bitmap for reg rules (bsc#1227149).\n- wifi: ath11k: add support for QCA2066 (bsc#1227149).\n- wifi: ath11k: add support to select 6 GHz regulatory type (bsc#1227149).\n- wifi: ath11k: ath11k_debugfs_register(): fix format-truncation warning (bsc#1227149).\n- wifi: ath11k: avoid forward declaration of ath11k_mac_start_vdev_delay() (bsc#1227149).\n- wifi: ath11k: call ath11k_mac_fils_discovery() without condition (bsc#1227149).\n- wifi: ath11k: constify MHI channel and controller configs (bsc#1227149).\n- wifi: ath11k: debug: add ATH11K_DBG_CE (bsc#1227149).\n- wifi: ath11k: debug: remove unused ATH11K_DBG_ANY (bsc#1227149).\n- wifi: ath11k: debug: use all upper case in ATH11k_DBG_HAL (bsc#1227149).\n- wifi: ath11k: do not use %pK (bsc#1227149).\n- wifi: ath11k: document HAL_RX_BUF_RBM_SW4_BM (bsc#1227149).\n- wifi: ath11k: dp: cleanup debug message (bsc#1227149).\n- wifi: ath11k: driver settings for MBSSID and EMA (bsc#1227149).\n- wifi: ath11k: drop NULL pointer check in ath11k_update_per_peer_tx_stats() (bsc#1227149).\n- wifi: ath11k: drop redundant check in ath11k_dp_rx_mon_dest_process() (bsc#1227149).\n- wifi: ath11k: enable 36 bit mask for stream DMA (bsc#1227149).\n- wifi: ath11k: factory test mode support (bsc#1227149).\n- wifi: ath11k: fill parameters for vdev set tpc power WMI command (bsc#1227149).\n- wifi: ath11k: fix CAC running state during virtual interface start (bsc#1227149).\n- wifi: ath11k: fix IOMMU errors on buffer rings (bsc#1227149).\n- wifi: ath11k: fix RCU documentation in ath11k_mac_op_ipv6_changed() (git-fixes).\n- wifi: ath11k: fix WCN6750 firmware crash caused by 17 num_vdevs (bsc#1227149).\n- wifi: ath11k: fix Wvoid-pointer-to-enum-cast warning (bsc#1227149).\n- wifi: ath11k: fix a possible dead lock caused by ab-\u003ebase_lock (bsc#1227149).\n- wifi: ath11k: fix ath11k_mac_op_remain_on_channel() stack usage (bsc#1227149).\n- wifi: ath11k: fix connection failure due to unexpected peer delete (bsc#1227149).\n- wifi: ath11k: fix tid bitmap is 0 in peer rx mu stats (bsc#1227149).\n- wifi: ath11k: fix wrong definition of CE ring\u0027s base address (git-fixes).\n- wifi: ath11k: fix wrong handling of CCMP256 and GCMP ciphers (git-fixes).\n- wifi: ath11k: hal: cleanup debug message (bsc#1227149).\n- wifi: ath11k: htc: cleanup debug messages (bsc#1227149).\n- wifi: ath11k: initialize eirp_power before use (bsc#1227149).\n- wifi: ath11k: mac: fix struct ieee80211_sband_iftype_data handling (bsc#1227149).\n- wifi: ath11k: mhi: add a warning message for MHI_CB_EE_RDDM crash (bsc#1227149).\n- wifi: ath11k: move pci.ops registration ahead (bsc#1227149).\n- wifi: ath11k: move power type check to ASSOC stage when connecting to 6 GHz AP (bsc#1227149).\n- wifi: ath11k: move references from rsvd2 to info fields (bsc#1227149).\n- wifi: ath11k: pci: cleanup debug logging (bsc#1227149).\n- wifi: ath11k: print debug level in debug messages (bsc#1227149).\n- wifi: ath11k: provide address list if chip supports 2 stations (bsc#1227149).\n- wifi: ath11k: qmi: refactor ath11k_qmi_m3_load() (bsc#1227149).\n- wifi: ath11k: refactor ath11k_wmi_tlv_parse_alloc() (bsc#1227149).\n- wifi: ath11k: refactor setting country code logic (stable-fixes).\n- wifi: ath11k: refactor vif parameter configurations (bsc#1227149).\n- wifi: ath11k: rely on mac80211 debugfs handling for vif (bsc#1227149).\n- wifi: ath11k: remove ath11k_htc_record::pauload[] (bsc#1227149).\n- wifi: ath11k: remove invalid peer create logic (bsc#1227149).\n- wifi: ath11k: remove manual mask names from debug messages (bsc#1227149).\n- wifi: ath11k: remove unnecessary (void*) conversions (bsc#1227149).\n- wifi: ath11k: remove unsupported event handlers (bsc#1227149).\n- wifi: ath11k: remove unused function ath11k_tm_event_wmi() (bsc#1227149).\n- wifi: ath11k: remove unused members of \u0027struct ath11k_base\u0027 (bsc#1227149).\n- wifi: ath11k: remove unused scan_events from struct scan_req_params (bsc#1227149).\n- wifi: ath11k: rename MBSSID fields in wmi_vdev_up_cmd (bsc#1227149).\n- wifi: ath11k: rename ath11k_start_vdev_delay() (bsc#1227149).\n- wifi: ath11k: rename the sc naming convention to ab (bsc#1227149).\n- wifi: ath11k: rename the wmi_sc naming convention to wmi_ab (bsc#1227149).\n- wifi: ath11k: replace ENOTSUPP with EOPNOTSUPP (bsc#1227149).\n- wifi: ath11k: restore country code during resume (git-fixes).\n- wifi: ath11k: save max transmit power in vdev start response event from firmware (bsc#1227149).\n- wifi: ath11k: save power spectral density(PSD) of regulatory rule (bsc#1227149).\n- wifi: ath11k: simplify ath11k_mac_validate_vht_he_fixed_rate_settings() (bsc#1227149).\n- wifi: ath11k: simplify the code with module_platform_driver (bsc#1227149).\n- wifi: ath11k: store cur_regulatory_info for each radio (bsc#1227149).\n- wifi: ath11k: support 2 station interfaces (bsc#1227149).\n- wifi: ath11k: update proper pdev/vdev id for testmode command (bsc#1227149).\n- wifi: ath11k: update regulatory rules when connect to AP on 6 GHz band for station (bsc#1227149).\n- wifi: ath11k: update regulatory rules when interface added (bsc#1227149).\n- wifi: ath11k: use RCU when accessing struct inet6_dev::ac_list (bsc#1227149).\n- wifi: ath11k: use WMI_VDEV_SET_TPC_POWER_CMDID when EXT_TPC_REG_SUPPORT for 6 GHz (bsc#1227149).\n- wifi: ath11k: use kstrtoul_from_user() where appropriate (bsc#1227149).\n- wifi: ath11k: use select for CRYPTO_MICHAEL_MIC (bsc#1227149).\n- wifi: ath11k: wmi: add unified command debug messages (bsc#1227149).\n- wifi: ath11k: wmi: cleanup error handling in ath11k_wmi_send_init_country_cmd() (bsc#1227149).\n- wifi: ath11k: wmi: use common error handling style (bsc#1227149).\n- wifi: ath11k: workaround too long expansion sparse warnings (bsc#1227149).\n- wifi: ath12k: Add logic to write QRTR node id to scratch (bsc#1227149).\n- wifi: ath12k: Add missing qmi_txn_cancel() calls (bsc#1227149).\n- wifi: ath12k: Add support to parse new WMI event for 6 GHz regulatory (bsc#1227149).\n- wifi: ath12k: Consistently use ath12k_vif_to_arvif() (bsc#1227149).\n- wifi: ath12k: Consolidate WMI peer flags (bsc#1227149).\n- wifi: ath12k: Correct 6 GHz frequency value in rx status (git-fixes).\n- wifi: ath12k: Do not drop tx_status in failure case (git-fixes).\n- wifi: ath12k: Do not use scan_flags from struct ath12k_wmi_scan_req_arg (bsc#1227149).\n- wifi: ath12k: Enable Mesh support for QCN9274 (bsc#1227149).\n- wifi: ath12k: Fix a few spelling errors (bsc#1227149).\n- wifi: ath12k: Fix tx completion ring (WBM2SW) setup failure (git-fixes).\n- wifi: ath12k: Fix uninitialized use of ret in ath12k_mac_allocate() (bsc#1227149).\n- wifi: ath12k: Introduce and use ath12k_sta_to_arsta() (bsc#1227149).\n- wifi: ath12k: Introduce the container for mac80211 hw (bsc#1227149).\n- wifi: ath12k: Make QMI message rules const (bsc#1227149).\n- wifi: ath12k: Optimize the mac80211 hw data access (bsc#1227149).\n- wifi: ath12k: Read board id to support split-PHY QCN9274 (bsc#1227149).\n- wifi: ath12k: Refactor the mac80211 hw access from link/radio (bsc#1227149).\n- wifi: ath12k: Remove ath12k_base::bd_api (bsc#1227149).\n- wifi: ath12k: Remove obsolete struct wmi_peer_flags_map *peer_flags (bsc#1227149).\n- wifi: ath12k: Remove some dead code (bsc#1227149).\n- wifi: ath12k: Remove struct ath12k::ops (bsc#1227149).\n- wifi: ath12k: Remove unnecessary (void*) conversions (bsc#1227149).\n- wifi: ath12k: Remove unnecessary struct qmi_txn initializers (bsc#1227149).\n- wifi: ath12k: Remove unused declarations (bsc#1227149).\n- wifi: ath12k: Remove unused scan_flags from struct ath12k_wmi_scan_req_arg (bsc#1227149).\n- wifi: ath12k: Set default beacon mode to burst mode (bsc#1227149).\n- wifi: ath12k: Use initializers for QMI message buffers (bsc#1227149).\n- wifi: ath12k: Use msdu_end to check MCBC (bsc#1227149).\n- wifi: ath12k: Use pdev_id rather than mac_id to get pdev (bsc#1227149).\n- wifi: ath12k: WMI support to process EHT capabilities (bsc#1227149).\n- wifi: ath12k: add 320 MHz bandwidth enums (bsc#1227149).\n- wifi: ath12k: add CE and ext IRQ flag to indicate irq_handler (bsc#1227149).\n- wifi: ath12k: add EHT PHY modes (bsc#1227149).\n- wifi: ath12k: add MAC id support in WBM error path (bsc#1227149).\n- wifi: ath12k: add MLO header in peer association (bsc#1227149).\n- wifi: ath12k: add P2P IE in beacon template (bsc#1227149).\n- wifi: ath12k: add QMI PHY capability learn support (bsc#1227149).\n- wifi: ath12k: add WMI support for EHT peer (bsc#1227149).\n- wifi: ath12k: add ath12k_qmi_free_resource() for recovery (bsc#1227149).\n- wifi: ath12k: add fallback board name without variant while searching board-2.bin (bsc#1227149).\n- wifi: ath12k: add firmware-2.bin support (bsc#1227149).\n- wifi: ath12k: add handler for scan event WMI_SCAN_EVENT_DEQUEUED (bsc#1227149).\n- wifi: ath12k: add keep backward compatibility of PHY mode to avoid firmware crash (bsc#1227149).\n- wifi: ath12k: add msdu_end structure for WCN7850 (bsc#1227149).\n- wifi: ath12k: add parsing of phy bitmap for reg rules (bsc#1227149).\n- wifi: ath12k: add processing for TWT disable event (bsc#1227149).\n- wifi: ath12k: add processing for TWT enable event (bsc#1227149).\n- wifi: ath12k: add qmi_cnss_feature_bitmap field to hardware parameters (bsc#1227149).\n- wifi: ath12k: add rcu lock for ath12k_wmi_p2p_noa_event() (bsc#1227149).\n- wifi: ath12k: add read variant from SMBIOS for download board data (bsc#1227149).\n- wifi: ath12k: add string type to search board data in board-2.bin for WCN7850 (bsc#1227149).\n- wifi: ath12k: add support for BA1024 (bsc#1227149).\n- wifi: ath12k: add support for collecting firmware log (bsc#1227149).\n- wifi: ath12k: add support for hardware rfkill for WCN7850 (bsc#1227149).\n- wifi: ath12k: add support for peer meta data version (bsc#1227149).\n- wifi: ath12k: add support one MSI vector (bsc#1227149).\n- wifi: ath12k: add support to search regdb data in board-2.bin for WCN7850 (bsc#1227149).\n- wifi: ath12k: add wait operation for tx management packets for flush from mac80211 (bsc#1227149).\n- wifi: ath12k: advertise P2P dev support for WCN7850 (bsc#1227149).\n- wifi: ath12k: allow specific mgmt frame tx while vdev is not up (bsc#1227149).\n- wifi: ath12k: ath12k_start_vdev_delay(): convert to use ar (bsc#1227149).\n- wifi: ath12k: avoid deadlock by change ieee80211_queue_work for regd_update_work (bsc#1227149).\n- wifi: ath12k: avoid duplicated vdev stop (git-fixes).\n- wifi: ath12k: avoid explicit HW conversion argument in Rxdma replenish (bsc#1227149).\n- wifi: ath12k: avoid explicit RBM id argument in Rxdma replenish (bsc#1227149).\n- wifi: ath12k: avoid explicit mac id argument in Rxdma replenish (bsc#1227149).\n- wifi: ath12k: avoid repeated hw access from ar (bsc#1227149).\n- wifi: ath12k: avoid repeated wiphy access from hw (bsc#1227149).\n- wifi: ath12k: call ath12k_mac_fils_discovery() without condition (bsc#1227149).\n- wifi: ath12k: change DMA direction while mapping reinjected packets (git-fixes).\n- wifi: ath12k: change MAC buffer ring size to 2048 (bsc#1227149).\n- wifi: ath12k: change WLAN_SCAN_PARAMS_MAX_IE_LEN from 256 to 512 (bsc#1227149).\n- wifi: ath12k: change interface combination for P2P mode (bsc#1227149).\n- wifi: ath12k: change to initialize recovery variables earlier in ath12k_core_reset() (bsc#1227149).\n- wifi: ath12k: change to treat alpha code na as world wide regdomain (bsc#1227149).\n- wifi: ath12k: change to use dynamic memory for channel list of scan (bsc#1227149).\n- wifi: ath12k: check M3 buffer size as well whey trying to reuse it (bsc#1227149).\n- wifi: ath12k: check hardware major version for WCN7850 (bsc#1227149).\n- wifi: ath12k: configure RDDM size to MHI for device recovery (bsc#1227149).\n- wifi: ath12k: configure puncturing bitmap (bsc#1227149).\n- wifi: ath12k: correct the data_type from QMI_OPT_FLAG to QMI_UNSIGNED_1_BYTE for mlo_capable (bsc#1227149).\n- wifi: ath12k: delete the timer rx_replenish_retry during rmmod (bsc#1227149).\n- wifi: ath12k: designating channel frequency for ROC scan (bsc#1227149).\n- wifi: ath12k: disable QMI PHY capability learn in split-phy QCN9274 (bsc#1227149).\n- wifi: ath12k: do not drop data frames from unassociated stations (bsc#1227149).\n- wifi: ath12k: do not restore ASPM in case of single MSI vector (bsc#1227149).\n- wifi: ath12k: drop NULL pointer check in ath12k_update_per_peer_tx_stats() (bsc#1227149).\n- wifi: ath12k: drop failed transmitted frames from metric calculation (git-fixes).\n- wifi: ath12k: enable 320 MHz bandwidth for 6 GHz band in EHT PHY capability for WCN7850 (bsc#1227149).\n- wifi: ath12k: enable 802.11 power save mode in station mode (bsc#1227149).\n- wifi: ath12k: enable IEEE80211_HW_SINGLE_SCAN_ON_ALL_BANDS for WCN7850 (bsc#1227149).\n- wifi: ath12k: fetch correct pdev id from WMI_SERVICE_READY_EXT_EVENTID (bsc#1227149).\n- wifi: ath12k: fix PCI read and write (bsc#1227149).\n- wifi: ath12k: fix WARN_ON during ath12k_mac_update_vif_chan (bsc#1227149).\n- wifi: ath12k: fix broken structure wmi_vdev_create_cmd (bsc#1227149).\n- wifi: ath12k: fix conf_mutex in ath12k_mac_op_unassign_vif_chanctx() (bsc#1227149).\n- wifi: ath12k: fix debug messages (bsc#1227149).\n- wifi: ath12k: fix fetching MCBC flag for QCN9274 (bsc#1227149).\n- wifi: ath12k: fix firmware assert during insmod in memory segment mode (bsc#1227149).\n- wifi: ath12k: fix firmware crash during reo reinject (git-fixes).\n- wifi: ath12k: fix invalid m3 buffer address (bsc#1227149).\n- wifi: ath12k: fix invalid memory access while processing fragmented packets (git-fixes).\n- wifi: ath12k: fix kernel crash during resume (bsc#1227149).\n- wifi: ath12k: fix license in p2p.c and p2p.h (bsc#1227149).\n- wifi: ath12k: fix peer metadata parsing (git-fixes).\n- wifi: ath12k: fix potential wmi_mgmt_tx_queue race condition (bsc#1227149).\n- wifi: ath12k: fix radar detection in 160 MHz (bsc#1227149).\n- wifi: ath12k: fix recovery fail while firmware crash when doing channel switch (bsc#1227149).\n- wifi: ath12k: fix the error handler of rfkill config (bsc#1227149).\n- wifi: ath12k: fix the issue that the multicast/broadcast indicator is not read correctly for WCN7850 (bsc#1227149).\n- wifi: ath12k: fix the problem that down grade phy mode operation (bsc#1227149).\n- wifi: ath12k: fix wrong definition of CE ring\u0027s base address (git-fixes).\n- wifi: ath12k: fix wrong definitions of hal_reo_update_rx_queue (bsc#1227149).\n- wifi: ath12k: get msi_data again after request_irq is called (bsc#1227149).\n- wifi: ath12k: implement handling of P2P NoA event (bsc#1227149).\n- wifi: ath12k: implement remain on channel for P2P mode (bsc#1227149).\n- wifi: ath12k: increase vdev setup timeout (bsc#1227149).\n- wifi: ath12k: indicate NON MBSSID vdev by default during vdev start (bsc#1227149).\n- wifi: ath12k: indicate scan complete for scan canceled when scan running (bsc#1227149).\n- wifi: ath12k: indicate to mac80211 scan complete with aborted flag for ATH12K_SCAN_STARTING state (bsc#1227149).\n- wifi: ath12k: move HE capabilities processing to a new function (bsc#1227149).\n- wifi: ath12k: move peer delete after vdev stop of station for WCN7850 (bsc#1227149).\n- wifi: ath12k: parse WMI service ready ext2 event (bsc#1227149).\n- wifi: ath12k: peer assoc for 320 MHz (bsc#1227149).\n- wifi: ath12k: prepare EHT peer assoc parameters (bsc#1227149).\n- wifi: ath12k: propagate EHT capabilities to userspace (bsc#1227149).\n- wifi: ath12k: refactor DP Rxdma ring structure (bsc#1227149).\n- wifi: ath12k: refactor QMI MLO host capability helper function (bsc#1227149).\n- wifi: ath12k: refactor ath12k_bss_assoc() (bsc#1227149).\n- wifi: ath12k: refactor ath12k_mac_allocate() and ath12k_mac_destroy() (bsc#1227149).\n- wifi: ath12k: refactor ath12k_mac_op_ampdu_action() (bsc#1227149).\n- wifi: ath12k: refactor ath12k_mac_op_conf_tx() (bsc#1227149).\n- wifi: ath12k: refactor ath12k_mac_op_config() (bsc#1227149).\n- wifi: ath12k: refactor ath12k_mac_op_configure_filter() (bsc#1227149).\n- wifi: ath12k: refactor ath12k_mac_op_flush() (bsc#1227149).\n- wifi: ath12k: refactor ath12k_mac_op_start() (bsc#1227149).\n- wifi: ath12k: refactor ath12k_mac_op_stop() (bsc#1227149).\n- wifi: ath12k: refactor ath12k_mac_op_update_vif_offload() (bsc#1227149).\n- wifi: ath12k: refactor ath12k_mac_register() and ath12k_mac_unregister() (bsc#1227149).\n- wifi: ath12k: refactor ath12k_mac_setup_channels_rates() (bsc#1227149).\n- wifi: ath12k: refactor ath12k_wmi_tlv_parse_alloc() (bsc#1227149).\n- wifi: ath12k: refactor multiple MSI vector implementation (bsc#1227149).\n- wifi: ath12k: refactor the rfkill worker (bsc#1227149).\n- wifi: ath12k: register EHT mesh capabilities (bsc#1227149).\n- wifi: ath12k: relax list iteration in ath12k_mac_vif_unref() (bsc#1227149).\n- wifi: ath12k: relocate ath12k_dp_pdev_pre_alloc() call (bsc#1227149).\n- wifi: ath12k: remove hal_desc_sz from hw params (bsc#1227149).\n- wifi: ath12k: remove redundant memset() in ath12k_hal_reo_qdesc_setup() (bsc#1227149).\n- wifi: ath12k: remove the unused scan_events from ath12k_wmi_scan_req_arg (bsc#1227149).\n- wifi: ath12k: remove unused ATH12K_BD_IE_BOARD_EXT (bsc#1227149).\n- wifi: ath12k: rename HE capabilities setup/copy functions (bsc#1227149).\n- wifi: ath12k: rename the sc naming convention to ab (bsc#1227149).\n- wifi: ath12k: rename the wmi_sc naming convention to wmi_ab (bsc#1227149).\n- wifi: ath12k: replace ENOTSUPP with EOPNOTSUPP (bsc#1227149).\n- wifi: ath12k: send WMI_PEER_REORDER_QUEUE_SETUP_CMDID when ADDBA session starts (bsc#1227149).\n- wifi: ath12k: set IRQ affinity to CPU0 in case of one MSI vector (bsc#1227149).\n- wifi: ath12k: set PERST pin no pull request for WCN7850 (bsc#1227149).\n- wifi: ath12k: split hal_ops to support RX TLVs word mask compaction (bsc#1227149).\n- wifi: ath12k: subscribe required word mask from rx tlv (bsc#1227149).\n- wifi: ath12k: support default regdb while searching board-2.bin for WCN7850 (bsc#1227149).\n- wifi: ath12k: trigger station disconnect on hardware restart (bsc#1227149).\n- wifi: ath12k: use ATH12K_PCI_IRQ_DP_OFFSET for DP IRQ (bsc#1227149).\n- wifi: ath12k: use correct flag field for 320 MHz channels (bsc#1227149).\n- wifi: ath12k: use select for CRYPTO_MICHAEL_MIC (bsc#1227149).\n- wifi: ath5k: Convert to platform remove callback returning void (bsc#1227149).\n- wifi: ath5k: Remove redundant dev_err() (bsc#1227149).\n- wifi: ath5k: ath5k_hw_get_median_noise_floor(): use swap() (bsc#1227149).\n- wifi: ath5k: remove phydir check from ath5k_debug_init_device() (bsc#1227149).\n- wifi: ath5k: remove unnecessary (void*) conversions (bsc#1227149).\n- wifi: ath5k: remove unused ath5k_eeprom_info::ee_antenna (bsc#1227149).\n- wifi: ath5k: replace deprecated strncpy with strscpy (bsc#1227149).\n- wifi: ath6kl: Remove error checking for debugfs_create_dir() (bsc#1227149).\n- wifi: ath6kl: remove unnecessary (void*) conversions (bsc#1227149).\n- wifi: ath6kl: replace deprecated strncpy with memcpy (bsc#1227149).\n- wifi: ath9k: Convert to platform remove callback returning void (bsc#1227149).\n- wifi: ath9k: Remove unnecessary (void*) conversions (bsc#1227149).\n- wifi: ath9k: Remove unnecessary ternary operators (bsc#1227149).\n- wifi: ath9k: Remove unused declarations (bsc#1227149).\n- wifi: ath9k: avoid using uninitialized array (bsc#1227149).\n- wifi: ath9k: clean up function ath9k_hif_usb_resume (bsc#1227149).\n- wifi: ath9k: consistently use kstrtoX_from_user() functions (bsc#1227149).\n- wifi: ath9k: delete some unused/duplicate macros (bsc#1227149).\n- wifi: ath9k: fix parameter check in ath9k_init_debug() (bsc#1227149).\n- wifi: ath9k: remove redundant assignment to variable ret (bsc#1227149).\n- wifi: ath9k: reset survey of current channel after a scan started (bsc#1227149).\n- wifi: ath9k: simplify ar9003_hw_process_ini() (bsc#1227149).\n- wifi: ath9k: use u32 for txgain indexes (bsc#1227149).\n- wifi: ath9k: work around memset overflow warning (bsc#1227149).\n- wifi: ath9k_htc: fix format-truncation warning (bsc#1227149).\n- wifi: ath: Use is_multicast_ether_addr() to check multicast Ether address (bsc#1227149).\n- wifi: ath: dfs_pattern_detector: Use flex array to simplify code (bsc#1227149).\n- wifi: ath: remove unused-but-set parameter (bsc#1227149).\n- wifi: ath: work around false-positive stringop-overread warning (bsc#1227149).\n- wifi: atk10k: Do not opencode ath10k_pci_priv() in ath10k_ahb_priv() (bsc#1227149).\n- wifi: atmel: remove unused ioctl function (bsc#1227149).\n- wifi: b43: silence sparse warnings (bsc#1227149).\n- wifi: brcm80211: replace deprecated strncpy with strscpy (bsc#1227149).\n- wifi: brcmfmac: Annotate struct brcmf_gscan_config with __counted_by (bsc#1227149).\n- wifi: brcmfmac: Detect corner error case earlier with log (bsc#1227149).\n- wifi: brcmfmac: add linefeed at end of file (bsc#1227149).\n- wifi: brcmfmac: allow per-vendor event handling (bsc#1227149).\n- wifi: brcmfmac: do not cast hidden SSID attribute value to boolean (bsc#1227149).\n- wifi: brcmfmac: do not pass hidden SSID attribute as value directly (bsc#1227149).\n- wifi: brcmfmac: export firmware interface functions (bsc#1227149).\n- wifi: brcmfmac: firmware: Annotate struct brcmf_fw_request with __counted_by (bsc#1227149).\n- wifi: brcmfmac: fix format-truncation warnings (bsc#1227149).\n- wifi: brcmfmac: fix gnu_printf warnings (bsc#1227149).\n- wifi: brcmfmac: fweh: Add __counted_by for struct brcmf_fweh_queue_item and use struct_size() (bsc#1227149).\n- wifi: brcmfmac: fweh: Fix boot crash on Raspberry Pi 4 (bsc#1227149).\n- wifi: brcmfmac: move feature overrides before feature_disable (bsc#1227149).\n- wifi: brcmsmac: LCN PHY code is used for BCM4313 2G-only device (git-fixes).\n- wifi: brcmsmac: cleanup SCB-related data types (bsc#1227149).\n- wifi: brcmsmac: fix gnu_printf warnings (bsc#1227149).\n- wifi: brcmsmac: phy: Remove unreachable code (bsc#1227149).\n- wifi: brcmsmac: remove more unused data types (bsc#1227149).\n- wifi: brcmsmac: remove unused data type (bsc#1227149).\n- wifi: brcmsmac: replace deprecated strncpy with memcpy (bsc#1227149).\n- wifi: brcmsmac: silence sparse warnings (bsc#1227149).\n- wifi: brcmutil: use helper function pktq_empty() instead of open code (bsc#1227149).\n- wifi: carl9170: Remove redundant assignment to pointer super (bsc#1227149).\n- wifi: carl9170: remove unnecessary (void*) conversions (bsc#1227149).\n- wifi: cfg80211: Add support for setting TID to link mapping (bsc#1227149).\n- wifi: cfg80211: Allow AP/P2PGO to indicate port authorization to peer STA/P2PClient (bsc#1227149).\n- wifi: cfg80211: Extend support for scanning while MLO connected (bsc#1227149).\n- wifi: cfg80211: Fix typo in documentation (bsc#1227149).\n- wifi: cfg80211: Handle specific BSSID in 6GHz scanning (bsc#1227149).\n- wifi: cfg80211: Include operating class 137 in 6GHz band (bsc#1227149).\n- wifi: cfg80211: Lock wiphy in cfg80211_get_station (git-fixes).\n- wifi: cfg80211: OWE DH IE handling offload (bsc#1227149).\n- wifi: cfg80211: Replace ENOTSUPP with EOPNOTSUPP (bsc#1227149).\n- wifi: cfg80211: Schedule regulatory check on BSS STA channel change (bsc#1227149).\n- wifi: cfg80211: Update the default DSCP-to-UP mapping (bsc#1227149).\n- wifi: cfg80211: add BSS usage reporting (bsc#1227149).\n- wifi: cfg80211: add RNR with reporting AP information (bsc#1227149).\n- wifi: cfg80211: add a flag to disable wireless extensions (bsc#1227149).\n- wifi: cfg80211: add local_state_change to deauth trace (bsc#1227149).\n- wifi: cfg80211: add locked debugfs wrappers (bsc#1227149).\n- wifi: cfg80211: add support for SPP A-MSDUs (bsc#1227149).\n- wifi: cfg80211: address several kerneldoc warnings (bsc#1227149).\n- wifi: cfg80211: allow reg update by driver even if wiphy-\u003eregd is set (bsc#1227149).\n- wifi: cfg80211: annotate iftype_data pointer with sparse (bsc#1227149).\n- wifi: cfg80211: avoid double free if updating BSS fails (bsc#1227149).\n- wifi: cfg80211: call reg_call_notifier on beacon hints (bsc#1227149).\n- wifi: cfg80211: check RTNL when iterating devices (bsc#1227149).\n- wifi: cfg80211: check wiphy mutex is held for wdev mutex (bsc#1227149).\n- wifi: cfg80211: consume both probe response and beacon IEs (bsc#1227149).\n- wifi: cfg80211: detect stuck ECSA element in probe resp (bsc#1227149).\n- wifi: cfg80211: ensure cfg80211_bss_update frees IEs on error (bsc#1227149).\n- wifi: cfg80211: export DFS CAC time and usable state helper functions (bsc#1227149).\n- wifi: cfg80211: expose nl80211_chan_width_to_mhz for wide sharing (bsc#1227149).\n- wifi: cfg80211: fix 6 GHz scan request building (stable-fixes).\n- wifi: cfg80211: fix CQM for non-range use (bsc#1227149).\n- wifi: cfg80211: fix header kernel-doc typos (bsc#1227149).\n- wifi: cfg80211: fix kernel-doc for wiphy_delayed_work_flush() (bsc#1227149).\n- wifi: cfg80211: fix spelling \u0026 punctutation (bsc#1227149).\n- wifi: cfg80211: fix the order of arguments for trace events of the tx_rx_evt class (stable-fixes).\n- wifi: cfg80211: fix typo in cfg80211_calculate_bitrate_he() (git-fixes).\n- wifi: cfg80211: fully move wiphy work to unbound workqueue (git-fixes).\n- wifi: cfg80211: generate an ML element for per-STA profiles (bsc#1227149).\n- wifi: cfg80211: handle 2x996 RU allocation in cfg80211_calculate_bitrate_he() (git-fixes).\n- wifi: cfg80211: handle UHB AP and STA power type (bsc#1227149).\n- wifi: cfg80211: hold wiphy lock in cfg80211_any_wiphy_oper_chan() (bsc#1227149).\n- wifi: cfg80211: hold wiphy mutex for send_interface (bsc#1227149).\n- wifi: cfg80211: improve documentation for flag fields (bsc#1227149).\n- wifi: cfg80211: introduce cfg80211_ssid_eq() (bsc#1227149).\n- wifi: cfg80211: make RX assoc data const (bsc#1227149).\n- wifi: cfg80211: make read-only array centers_80mhz static const (bsc#1227149).\n- wifi: cfg80211: modify prototype for change_beacon (bsc#1227149).\n- wifi: cfg80211: pmsr: use correct nla_get_uX functions (git-fixes).\n- wifi: cfg80211: reg: Support P2P operation on DFS channels (bsc#1227149).\n- wifi: cfg80211: reg: describe return values in kernel-doc (bsc#1227149).\n- wifi: cfg80211: reg: fix various kernel-doc issues (bsc#1227149).\n- wifi: cfg80211: reg: hold wiphy mutex for wdev iteration (bsc#1227149).\n- wifi: cfg80211: remove scan_width support (bsc#1227149).\n- wifi: cfg80211: remove wdev mutex (bsc#1227149).\n- wifi: cfg80211: rename UHB to 6 GHz (bsc#1227149).\n- wifi: cfg80211: report per-link errors during association (bsc#1227149).\n- wifi: cfg80211: report unprotected deauth/disassoc in wowlan (bsc#1227149).\n- wifi: cfg80211: restrict NL80211_ATTR_TXQ_QUANTUM values (git-fixes).\n- wifi: cfg80211: save power spectral density(psd) of regulatory rule (bsc#1227149).\n- wifi: cfg80211: set correct param change count in ML element (bsc#1227149).\n- wifi: cfg80211: sme: hold wiphy lock for wdev iteration (bsc#1227149).\n- wifi: cfg80211: sort certificates in build (bsc#1227149).\n- wifi: cfg80211: split struct cfg80211_ap_settings (bsc#1227149).\n- wifi: cfg80211: validate HE operation element parsing (bsc#1227149).\n- wifi: cfg80211: wext: add extra SIOCSIWSCAN data check (stable-fixes).\n- wifi: cfg80211: wext: convert return value to kernel-doc (bsc#1227149).\n- wifi: cfg80211: wext: set ssids=NULL for passive scans (git-fixes).\n- wifi: cw1200: Avoid processing an invalid TIM IE (bsc#1227149).\n- wifi: cw1200: Convert to GPIO descriptors (bsc#1227149).\n- wifi: cw1200: fix __le16 sparse warnings (bsc#1227149).\n- wifi: cw1200: restore endian swapping (bsc#1227149).\n- wifi: drivers: Explicitly include correct DT includes (bsc#1227149).\n- wifi: fill in MODULE_DESCRIPTION()s for Broadcom WLAN (bsc#1227149).\n- wifi: fill in MODULE_DESCRIPTION()s for ar5523 (bsc#1227149).\n- wifi: fill in MODULE_DESCRIPTION()s for mt76 drivers (bsc#1227149).\n- wifi: fill in MODULE_DESCRIPTION()s for p54spi (bsc#1227149).\n- wifi: fill in MODULE_DESCRIPTION()s for wcn36xx (bsc#1227149).\n- wifi: fill in MODULE_DESCRIPTION()s for wilc1000 (bsc#1227149).\n- wifi: fill in MODULE_DESCRIPTION()s for wl1251 and wl12xx (bsc#1227149).\n- wifi: fill in MODULE_DESCRIPTION()s for wl18xx (bsc#1227149).\n- wifi: fill in MODULE_DESCRIPTION()s for wlcore (bsc#1227149).\n- wifi: hostap: Add __counted_by for struct prism2_download_data and use struct_size() (bsc#1227149).\n- wifi: hostap: fix stringop-truncations GCC warning (bsc#1227149).\n- wifi: hostap: remove unused ioctl function (bsc#1227149).\n- wifi: ieee80211: add UL-bandwidth definition of trigger frame (bsc#1227149).\n- wifi: ieee80211: add definitions for negotiated TID to Link map (bsc#1227149).\n- wifi: ieee80211: check for NULL in ieee80211_mle_size_ok() (stable-fixes).\n- wifi: iwlmei: do not send SAP messages if AMT is disabled (bsc#1227149).\n- wifi: iwlmei: do not send nic info with invalid mac address (bsc#1227149).\n- wifi: iwlmei: send HOST_GOES_DOWN message even if wiamt is disabled (bsc#1227149).\n- wifi: iwlmei: send driver down SAP message only if wiamt is enabled (bsc#1227149).\n- wifi: iwlmvm: fw: Add new OEM vendor to tas approved list (bsc#1227149).\n- wifi: iwlwifi: Add rf_mapping of new wifi7 devices (bsc#1227149).\n- wifi: iwlwifi: Add support for PPAG cmd v5 and PPAG revision 3 (bsc#1227149).\n- wifi: iwlwifi: Add support for new 802.11be device (bsc#1227149).\n- wifi: iwlwifi: Do not mark DFS channels as NO-IR (bsc#1227149).\n- wifi: iwlwifi: Extract common prph mac/phy regions data dump logic (bsc#1227149).\n- wifi: iwlwifi: Fix spelling mistake \u0027SESION\u0027 -\u003e \u0027SESSION\u0027 (bsc#1227149).\n- wifi: iwlwifi: Use request_module_nowait (bsc#1227149).\n- wifi: iwlwifi: abort scan when rfkill on but device enabled (bsc#1227149).\n- wifi: iwlwifi: add HONOR to PPAG approved list (bsc#1227149).\n- wifi: iwlwifi: add Razer to ppag approved list (bsc#1227149).\n- wifi: iwlwifi: add mapping of a periphery register crf for WH RF (bsc#1227149).\n- wifi: iwlwifi: add new RF support for wifi7 (bsc#1227149).\n- wifi: iwlwifi: add support for SNPS DPHYIP region type (bsc#1227149).\n- wifi: iwlwifi: add support for a wiphy_work rx handler (bsc#1227149).\n- wifi: iwlwifi: add support for activating UNII-1 in WW via BIOS (bsc#1227149).\n- wifi: iwlwifi: add support for new ini region types (bsc#1227149).\n- wifi: iwlwifi: adjust rx_phyinfo debugfs to MLO (bsc#1227149).\n- wifi: iwlwifi: always have \u0027uats_enabled\u0027 (bsc#1227149).\n- wifi: iwlwifi: api: clean up some kernel-doc/typos (bsc#1227149).\n- wifi: iwlwifi: api: dbg-tlv: fix up kernel-doc (bsc#1227149).\n- wifi: iwlwifi: api: fix a small upper/lower-case typo (bsc#1227149).\n- wifi: iwlwifi: api: fix center_freq label in PHY diagram (bsc#1227149).\n- wifi: iwlwifi: api: fix constant version to match FW (bsc#1227149).\n- wifi: iwlwifi: api: fix kernel-doc reference (bsc#1227149).\n- wifi: iwlwifi: bump FW API to 84 for AX/BZ/SC devices (bsc#1227149).\n- wifi: iwlwifi: bump FW API to 86 for AX/BZ/SC devices (bsc#1227149).\n- wifi: iwlwifi: bump FW API to 87 for AX/BZ/SC devices (bsc#1227149).\n- wifi: iwlwifi: bump FW API to 88 for AX/BZ/SC devices (bsc#1227149).\n- wifi: iwlwifi: cancel session protection only if there is one (bsc#1227149).\n- wifi: iwlwifi: change link id in time event to s8 (bsc#1227149).\n- wifi: iwlwifi: check for kmemdup() return value in iwl_parse_tlv_firmware() (bsc#1227149).\n- wifi: iwlwifi: cleanup BT Shared Single Antenna code (bsc#1227149).\n- wifi: iwlwifi: cleanup sending PER_CHAIN_LIMIT_OFFSET_CMD (bsc#1227149).\n- wifi: iwlwifi: cleanup uefi variables loading (bsc#1227149).\n- wifi: iwlwifi: clear link_id in time_event (bsc#1227149).\n- wifi: iwlwifi: dbg-tlv: avoid extra allocation/copy (bsc#1227149).\n- wifi: iwlwifi: dbg-tlv: use struct_size() for allocation (bsc#1227149).\n- wifi: iwlwifi: dbg_ini: move iwl_dbg_tlv_free outside of debugfs ifdef (git-fixes).\n- wifi: iwlwifi: disable 160 MHz based on subsystem device ID (bsc#1227149).\n- wifi: iwlwifi: disable eSR when BT is active (bsc#1227149).\n- wifi: iwlwifi: disable multi rx queue for 9000 (bsc#1227149).\n- wifi: iwlwifi: do not check TAS block list size twice (bsc#1227149).\n- wifi: iwlwifi: do not use TRUE/FALSE with bool (bsc#1227149).\n- wifi: iwlwifi: drop NULL pointer check in iwl_mvm_tzone_set_trip_temp() (bsc#1227149).\n- wifi: iwlwifi: dvm: remove kernel-doc warnings (bsc#1227149).\n- wifi: iwlwifi: error-dump: fix kernel-doc issues (bsc#1227149).\n- wifi: iwlwifi: fail NIC access fast on dead NIC (bsc#1227149).\n- wifi: iwlwifi: fix #ifdef CONFIG_ACPI check (bsc#1227149).\n- wifi: iwlwifi: fix iwl_mvm_get_valid_rx_ant() (git-fixes).\n- wifi: iwlwifi: fix opmode start/stop race (bsc#1227149).\n- wifi: iwlwifi: fix some kernel-doc issues (bsc#1227149).\n- wifi: iwlwifi: fix system commands group ordering (bsc#1227149).\n- wifi: iwlwifi: fix the rf step and flavor bits range (bsc#1227149).\n- wifi: iwlwifi: fw: Add support for UATS table in UHB (bsc#1227149).\n- wifi: iwlwifi: fw: Fix debugfs command sending (bsc#1227149).\n- wifi: iwlwifi: fw: allow vmalloc for PNVM image (bsc#1227149).\n- wifi: iwlwifi: fw: dbg: ensure correct config name sizes (bsc#1227149).\n- wifi: iwlwifi: fw: disable firmware debug asserts (bsc#1227149).\n- wifi: iwlwifi: fw: file: clean up kernel-doc (bsc#1227149).\n- wifi: iwlwifi: fw: file: do not use [0] for variable arrays (bsc#1227149).\n- wifi: iwlwifi: fw: fix compiler warning for NULL string print (bsc#1227149).\n- wifi: iwlwifi: fw: increase fw_version string size (bsc#1227149).\n- wifi: iwlwifi: fw: reconstruct the API/CAPA enum number (bsc#1227149).\n- wifi: iwlwifi: fw: replace deprecated strncpy with strscpy_pad (bsc#1227149).\n- wifi: iwlwifi: handle per-phy statistics from fw (bsc#1227149).\n- wifi: iwlwifi: implement GLAI ACPI table loading (bsc#1227149).\n- wifi: iwlwifi: implement can_activate_links callback (bsc#1227149).\n- wifi: iwlwifi: implement enable/disable for China 2022 regulatory (bsc#1227149).\n- wifi: iwlwifi: iwl-fh.h: fix kernel-doc issues (bsc#1227149).\n- wifi: iwlwifi: iwl-trans.h: clean up kernel-doc (bsc#1227149).\n- wifi: iwlwifi: iwlmvm: handle unprotected deauth/disassoc in d3 (bsc#1227149).\n- wifi: iwlwifi: load b0 version of ucode for HR1/HR2 (bsc#1227149).\n- wifi: iwlwifi: make TB reallocation a debug message (bsc#1227149).\n- wifi: iwlwifi: make time_events MLO aware (bsc#1227149).\n- wifi: iwlwifi: mei: return error from register when not built (bsc#1227149).\n- wifi: iwlwifi: mvm: Add basic link selection logic (bsc#1227149).\n- wifi: iwlwifi: mvm: Add support for removing responder TKs (bsc#1227149).\n- wifi: iwlwifi: mvm: Allow DFS concurrent operation (bsc#1227149).\n- wifi: iwlwifi: mvm: Configure the link mapping for non-MLD FW (bsc#1227149).\n- wifi: iwlwifi: mvm: Correctly report TSF data in scan complete (bsc#1227149).\n- wifi: iwlwifi: mvm: Declare support for secure LTF measurement (bsc#1227149).\n- wifi: iwlwifi: mvm: Do not warn if valid link pair was not found (bsc#1227149).\n- wifi: iwlwifi: mvm: Do not warn on invalid link on scan complete (bsc#1227149).\n- wifi: iwlwifi: mvm: Extend support for P2P service discovery (bsc#1227149).\n- wifi: iwlwifi: mvm: Fix FTM initiator flags (bsc#1227149).\n- wifi: iwlwifi: mvm: Fix scan abort handling with HW rfkill (stable-fixes).\n- wifi: iwlwifi: mvm: Fix unreachable code path (bsc#1227149).\n- wifi: iwlwifi: mvm: Handle BIGTK cipher in kek_kck cmd (stable-fixes).\n- wifi: iwlwifi: mvm: Keep connection in case of missed beacons during RX (bsc#1227149).\n- wifi: iwlwifi: mvm: Return success if link could not be removed (bsc#1227149).\n- wifi: iwlwifi: mvm: Use the link ID provided in scan request (bsc#1227149).\n- wifi: iwlwifi: mvm: add US/Canada MCC to API (bsc#1227149).\n- wifi: iwlwifi: mvm: add a debug print when we get a BAR (bsc#1227149).\n- wifi: iwlwifi: mvm: add a debugfs hook to clear the monitor data (bsc#1227149).\n- wifi: iwlwifi: mvm: add a per-link debugfs (bsc#1227149).\n- wifi: iwlwifi: mvm: add a print when sending RLC command (bsc#1227149).\n- wifi: iwlwifi: mvm: add start mac ctdp sum calculation debugfs handler (bsc#1227149).\n- wifi: iwlwifi: mvm: add support for TID to link mapping neg request (bsc#1227149).\n- wifi: iwlwifi: mvm: add support for new wowlan_info_notif (bsc#1227149).\n- wifi: iwlwifi: mvm: advertise MLO only if EHT is enabled (bsc#1227149).\n- wifi: iwlwifi: mvm: advertise support for SCS traffic description (bsc#1227149).\n- wifi: iwlwifi: mvm: advertise support for protected ranging negotiation (bsc#1227149).\n- wifi: iwlwifi: mvm: always update keys in D3 exit (bsc#1227149).\n- wifi: iwlwifi: mvm: avoid garbage iPN (bsc#1227149).\n- wifi: iwlwifi: mvm: calculate EMLSR mode after connection (bsc#1227149).\n- wifi: iwlwifi: mvm: check AP supports EMLSR (bsc#1227149).\n- wifi: iwlwifi: mvm: check for iwl_mvm_mld_update_sta() errors (bsc#1227149).\n- wifi: iwlwifi: mvm: check link more carefully (bsc#1227149).\n- wifi: iwlwifi: mvm: check n_ssids before accessing the ssids (git-fixes).\n- wifi: iwlwifi: mvm: check own capabilities for EMLSR (bsc#1227149).\n- wifi: iwlwifi: mvm: cleanup MLO and non-MLO unification code (bsc#1227149).\n- wifi: iwlwifi: mvm: combine condition/warning (bsc#1227149).\n- wifi: iwlwifi: mvm: consider having one active link (bsc#1227149).\n- wifi: iwlwifi: mvm: const-ify chandef pointers (bsc#1227149).\n- wifi: iwlwifi: mvm: cycle FW link on chanctx removal (bsc#1227149).\n- wifi: iwlwifi: mvm: d3: avoid intermediate/early mutex unlock (bsc#1227149).\n- wifi: iwlwifi: mvm: d3: disconnect on GTK rekey failure (bsc#1227149).\n- wifi: iwlwifi: mvm: d3: fix WoWLAN command version lookup (stable-fixes).\n- wifi: iwlwifi: mvm: d3: implement suspend with MLO (bsc#1227149).\n- wifi: iwlwifi: mvm: debugfs for fw system stats (bsc#1227149).\n- wifi: iwlwifi: mvm: define RX queue sync timeout as a macro (bsc#1227149).\n- wifi: iwlwifi: mvm: disable MLO for the time being (bsc#1227149).\n- wifi: iwlwifi: mvm: disallow puncturing in US/Canada (bsc#1227149).\n- wifi: iwlwifi: mvm: disconnect long CSA only w/o alternative (bsc#1227149).\n- wifi: iwlwifi: mvm: disconnect station vifs if recovery failed (bsc#1227149).\n- wifi: iwlwifi: mvm: do not abort queue sync in CT-kill (bsc#1227149).\n- wifi: iwlwifi: mvm: do not add dummy phy context (bsc#1227149).\n- wifi: iwlwifi: mvm: do not always disable EMLSR due to BT coex (bsc#1227149).\n- wifi: iwlwifi: mvm: do not do duplicate detection for nullfunc packets (bsc#1227149).\n- wifi: iwlwifi: mvm: do not initialize csa_work twice (git-fixes).\n- wifi: iwlwifi: mvm: do not limit VLP/AFC to UATS-enabled (git-fixes).\n- wifi: iwlwifi: mvm: do not read past the mfuart notifcation (git-fixes).\n- wifi: iwlwifi: mvm: do not send BT_COEX_CI command on new devices (bsc#1227149).\n- wifi: iwlwifi: mvm: do not send NDPs for new tx devices (bsc#1227149).\n- wifi: iwlwifi: mvm: do not send STA_DISABLE_TX_CMD for newer firmware (bsc#1227149).\n- wifi: iwlwifi: mvm: do not send the smart fifo command if not needed (bsc#1227149).\n- wifi: iwlwifi: mvm: do not set trigger frame padding in AP mode (bsc#1227149).\n- wifi: iwlwifi: mvm: do not support reduced tx power on ack for new devices (bsc#1227149).\n- wifi: iwlwifi: mvm: do not wake up rx_sync_waitq upon RFKILL (git-fixes).\n- wifi: iwlwifi: mvm: enable FILS DF Tx on non-PSC channel (bsc#1227149).\n- wifi: iwlwifi: mvm: enable HE TX/RX \u0026lt;242 tone RU on new RFs (bsc#1227149).\n- wifi: iwlwifi: mvm: expand queue sync warning messages (bsc#1227149).\n- wifi: iwlwifi: mvm: extend alive timeout to 2 seconds (bsc#1227149).\n- wifi: iwlwifi: mvm: fix ROC version check (bsc#1227149).\n- wifi: iwlwifi: mvm: fix SB CFG check (bsc#1227149).\n- wifi: iwlwifi: mvm: fix a battery life regression (bsc#1227149).\n- wifi: iwlwifi: mvm: fix a crash on 7265 (bsc#1227149).\n- wifi: iwlwifi: mvm: fix kernel-doc (bsc#1227149).\n- wifi: iwlwifi: mvm: fix link ID management (bsc#1227149).\n- wifi: iwlwifi: mvm: fix recovery flow in CSA (bsc#1227149).\n- wifi: iwlwifi: mvm: fix regdb initialization (bsc#1227149).\n- wifi: iwlwifi: mvm: fix the PHY context resolution for p2p device (bsc#1227149).\n- wifi: iwlwifi: mvm: fix the TXF mapping for BZ devices (bsc#1227149).\n- wifi: iwlwifi: mvm: fix the key PN index (bsc#1227149).\n- wifi: iwlwifi: mvm: fix thermal kernel-doc (bsc#1227149).\n- wifi: iwlwifi: mvm: fold the ref++ into iwl_mvm_phy_ctxt_add (bsc#1227149).\n- wifi: iwlwifi: mvm: handle BA session teardown in RF-kill (stable-fixes).\n- wifi: iwlwifi: mvm: handle debugfs names more carefully (bsc#1227149).\n- wifi: iwlwifi: mvm: handle link-STA allocation in restart (bsc#1227149).\n- wifi: iwlwifi: mvm: implement ROC version 3 (bsc#1227149).\n- wifi: iwlwifi: mvm: implement new firmware API for statistics (bsc#1227149).\n- wifi: iwlwifi: mvm: increase session protection after CSA (bsc#1227149).\n- wifi: iwlwifi: mvm: introduce PHY_CONTEXT_CMD_API_VER_5 (bsc#1227149).\n- wifi: iwlwifi: mvm: introduce esr_disable_reason (bsc#1227149).\n- wifi: iwlwifi: mvm: iterate active links for STA queues (bsc#1227149).\n- wifi: iwlwifi: mvm: limit EHT 320 MHz MCS for STEP URM (bsc#1227149).\n- wifi: iwlwifi: mvm: limit pseudo-D3 to 60 seconds (bsc#1227149).\n- wifi: iwlwifi: mvm: log dropped frames (bsc#1227149).\n- wifi: iwlwifi: mvm: log dropped packets due to MIC error (bsc#1227149).\n- wifi: iwlwifi: mvm: make \u0027pldr_sync\u0027 mode effective (bsc#1227149).\n- wifi: iwlwifi: mvm: make functions public (bsc#1227149).\n- wifi: iwlwifi: mvm: make pldr_sync AX210 specific (bsc#1227149).\n- wifi: iwlwifi: mvm: move BA notif messages before action (bsc#1227149).\n- wifi: iwlwifi: mvm: move RU alloc B2 placement (bsc#1227149).\n- wifi: iwlwifi: mvm: move listen interval to constants (bsc#1227149).\n- wifi: iwlwifi: mvm: offload IGTK in AP if BIGTK is supported (bsc#1227149).\n- wifi: iwlwifi: mvm: partially support PHY context version 6 (bsc#1227149).\n- wifi: iwlwifi: mvm: pick the version of SESSION_PROTECTION_NOTIF (bsc#1227149).\n- wifi: iwlwifi: mvm: properly set 6 GHz channel direct probe option (stable-fixes).\n- wifi: iwlwifi: mvm: reduce maximum RX A-MPDU size (bsc#1227149).\n- wifi: iwlwifi: mvm: refactor TX rate handling (bsc#1227149).\n- wifi: iwlwifi: mvm: refactor duplicate chanctx condition (bsc#1227149).\n- wifi: iwlwifi: mvm: remove EHT code from mac80211.c (bsc#1227149).\n- wifi: iwlwifi: mvm: remove IWL_MVM_STATUS_NEED_FLUSH_P2P (bsc#1227149).\n- wifi: iwlwifi: mvm: remove flags for enable/disable beacon filter (bsc#1227149).\n- wifi: iwlwifi: mvm: remove one queue sync on BA session stop (bsc#1227149).\n- wifi: iwlwifi: mvm: remove set_tim callback for MLD ops (bsc#1227149).\n- wifi: iwlwifi: mvm: remove stale STA link data during restart (stable-fixes).\n- wifi: iwlwifi: mvm: revert gen2 TX A-MPDU size to 64 (git-fixes).\n- wifi: iwlwifi: mvm: rework debugfs handling (bsc#1227149).\n- wifi: iwlwifi: mvm: set properly mac header (git-fixes).\n- wifi: iwlwifi: mvm: show dump even for pldr_sync (bsc#1227149).\n- wifi: iwlwifi: mvm: show skb_mac_gso_segment() failure reason (bsc#1227149).\n- wifi: iwlwifi: mvm: simplify the reorder buffer (bsc#1227149).\n- wifi: iwlwifi: mvm: skip adding debugfs symlink for reconfig (bsc#1227149).\n- wifi: iwlwifi: mvm: support CSA with MLD (bsc#1227149).\n- wifi: iwlwifi: mvm: support SPP A-MSDUs (bsc#1227149).\n- wifi: iwlwifi: mvm: support flush on AP interfaces (bsc#1227149).\n- wifi: iwlwifi: mvm: support injection antenna control (bsc#1227149).\n- wifi: iwlwifi: mvm: support iwl_dev_tx_power_cmd_v8 (bsc#1227149).\n- wifi: iwlwifi: mvm: support set_antenna() (bsc#1227149).\n- wifi: iwlwifi: mvm: unlock mvm if there is no primary link (bsc#1227149).\n- wifi: iwlwifi: mvm: use fast balance scan in case of an active P2P GO (bsc#1227149).\n- wifi: iwlwifi: mvm: use the new command to clear the internal buffer (bsc#1227149).\n- wifi: iwlwifi: mvm: work around A-MSDU size problem (bsc#1227149).\n- wifi: iwlwifi: no power save during transition to D3 (bsc#1227149).\n- wifi: iwlwifi: nvm-parse: advertise common packet padding (bsc#1227149).\n- wifi: iwlwifi: nvm: parse the VLP/AFC bit from regulatory (bsc#1227149).\n- wifi: iwlwifi: pcie: (re-)assign BAR0 on driver bind (bsc#1227149).\n- wifi: iwlwifi: pcie: Add new PCI device id and CNVI (bsc#1227149).\n- wifi: iwlwifi: pcie: clean up WFPM control bits (bsc#1227149).\n- wifi: iwlwifi: pcie: clean up device removal work (bsc#1227149).\n- wifi: iwlwifi: pcie: clean up gen1/gen2 TFD unmap (bsc#1227149).\n- wifi: iwlwifi: pcie: do not allow hw-rfkill to stop device on gen2 (bsc#1227149).\n- wifi: iwlwifi: pcie: dump CSRs before removal (bsc#1227149).\n- wifi: iwlwifi: pcie: enable TOP fatal error interrupt (bsc#1227149).\n- wifi: iwlwifi: pcie: fix kernel-doc issues (bsc#1227149).\n- wifi: iwlwifi: pcie: get_crf_id() can be void (bsc#1227149).\n- wifi: iwlwifi: pcie: give up mem read if HW is dead (bsc#1227149).\n- wifi: iwlwifi: pcie: move gen1 TB handling to header (bsc#1227149).\n- wifi: iwlwifi: pcie: point invalid TFDs to invalid data (bsc#1227149).\n- wifi: iwlwifi: pcie: propagate iwl_pcie_gen2_apm_init() error (bsc#1227149).\n- wifi: iwlwifi: pcie: rescan bus if no parent (bsc#1227149).\n- wifi: iwlwifi: prepare for reading DSM from UEFI (bsc#1227149).\n- wifi: iwlwifi: prepare for reading PPAG table from UEFI (bsc#1227149).\n- wifi: iwlwifi: prepare for reading SAR tables from UEFI (bsc#1227149).\n- wifi: iwlwifi: prepare for reading SPLC from UEFI (bsc#1227149).\n- wifi: iwlwifi: prepare for reading TAS table from UEFI (bsc#1227149).\n- wifi: iwlwifi: properly check if link is active (bsc#1227149).\n- wifi: iwlwifi: properly set WIPHY_FLAG_SUPPORTS_EXT_KEK_KCK (stable-fixes).\n- wifi: iwlwifi: queue: fix kernel-doc (bsc#1227149).\n- wifi: iwlwifi: queue: improve warning for no skb in reclaim (bsc#1227149).\n- wifi: iwlwifi: queue: move iwl_txq_gen2_set_tb() up (bsc#1227149).\n- wifi: iwlwifi: read DSM func 2 for specific RF types (bsc#1227149).\n- wifi: iwlwifi: read DSM functions from UEFI (bsc#1227149).\n- wifi: iwlwifi: read ECKV table from UEFI (bsc#1227149).\n- wifi: iwlwifi: read PPAG table from UEFI (bsc#1227149).\n- wifi: iwlwifi: read SAR tables from UEFI (bsc#1227149).\n- wifi: iwlwifi: read SPLC from UEFI (bsc#1227149).\n- wifi: iwlwifi: read WRDD table from UEFI (bsc#1227149).\n- wifi: iwlwifi: read WTAS table from UEFI (bsc#1227149).\n- wifi: iwlwifi: read mac step from aux register (bsc#1227149).\n- wifi: iwlwifi: refactor RX tracing (bsc#1227149).\n- wifi: iwlwifi: remove \u0027def_rx_queue\u0027 struct member (bsc#1227149).\n- wifi: iwlwifi: remove Gl A-step remnants (bsc#1227149).\n- wifi: iwlwifi: remove WARN from read_mem32() (bsc#1227149).\n- wifi: iwlwifi: remove async command callback (bsc#1227149).\n- wifi: iwlwifi: remove dead-code (bsc#1227149).\n- wifi: iwlwifi: remove extra kernel-doc (bsc#1227149).\n- wifi: iwlwifi: remove memory check for LMAC error address (bsc#1227149).\n- wifi: iwlwifi: remove retry loops in start (bsc#1227149).\n- wifi: iwlwifi: remove unused function prototype (bsc#1227149).\n- wifi: iwlwifi: replace ENOTSUPP with EOPNOTSUPP (bsc#1227149).\n- wifi: iwlwifi: return negative -EINVAL instead of positive EINVAL (bsc#1227149).\n- wifi: iwlwifi: rfi: use a single DSM function for all RFI configurations (bsc#1227149).\n- wifi: iwlwifi: send EDT table to FW (bsc#1227149).\n- wifi: iwlwifi: separate TAS \u0027read-from-BIOS\u0027 and \u0027send-to-FW\u0027 flows (bsc#1227149).\n- wifi: iwlwifi: simplify getting DSM from ACPI (bsc#1227149).\n- wifi: iwlwifi: skip affinity setting on non-SMP (bsc#1227149).\n- wifi: iwlwifi: skip opmode start retries on dead transport (bsc#1227149).\n- wifi: iwlwifi: small cleanups in PPAG table flows (bsc#1227149).\n- wifi: iwlwifi: support link command version 2 (bsc#1227149).\n- wifi: iwlwifi: support link id in SESSION_PROTECTION_NOTIF (bsc#1227149).\n- wifi: iwlwifi: support link_id in SESSION_PROTECTION cmd (bsc#1227149).\n- wifi: iwlwifi: take SGOM and UATS code out of ACPI ifdef (bsc#1227149).\n- wifi: iwlwifi: take send-DSM-to-FW flows out of ACPI ifdef (bsc#1227149).\n- wifi: iwlwifi: trace full frames with TX status request (bsc#1227149).\n- wifi: iwlwifi: update context info structure definitions (bsc#1227149).\n- wifi: iwlwifi: use system_unbound_wq for debug dump (bsc#1227149).\n- wifi: iwlwifi: validate PPAG table when sent to FW (bsc#1227149).\n- wifi: lib80211: remove unused variables iv32 and iv16 (bsc#1227149).\n- wifi: libertas: Follow renaming of SPI \u0027master\u0027 to \u0027controller\u0027 (bsc#1227149).\n- wifi: libertas: add missing calls to cancel_work_sync() (bsc#1227149).\n- wifi: libertas: cleanup SDIO reset (bsc#1227149).\n- wifi: libertas: handle possible spu_write_u16() errors (bsc#1227149).\n- wifi: libertas: prefer kstrtoX() for simple integer conversions (bsc#1227149).\n- wifi: libertas: simplify list operations in free_if_spi_card() (bsc#1227149).\n- wifi: libertas: use convenient lists to manage SDIO packets (bsc#1227149).\n- wifi: mac80211: Add __counted_by for struct ieee802_11_elems and use struct_size() (bsc#1227149).\n- wifi: mac80211: Avoid address calculations via out of bounds array indexing (stable-fixes).\n- wifi: mac80211: Check if we had first beacon with relevant links (bsc#1227149).\n- wifi: mac80211: Do not force off-channel for management Tx with MLO (bsc#1227149).\n- wifi: mac80211: Do not include crypto/algapi.h (bsc#1227149).\n- wifi: mac80211: Extend support for scanning while MLO connected (bsc#1227149).\n- wifi: mac80211: Fix SMPS handling in the context of MLO (bsc#1227149).\n- wifi: mac80211: Fix deadlock in ieee80211_sta_ps_deliver_wakeup() (git-fixes).\n- wifi: mac80211: Notify the low level driver on change in MLO valid links (bsc#1227149).\n- wifi: mac80211: Print local link address during authentication (bsc#1227149).\n- wifi: mac80211: Recalc offload when monitor stop (git-fixes).\n- wifi: mac80211: Remove unused function declarations (bsc#1227149).\n- wifi: mac80211: Rename and update IEEE80211_VIF_DISABLE_SMPS_OVERRIDE (bsc#1227149).\n- wifi: mac80211: Replace ENOTSUPP with EOPNOTSUPP (bsc#1227149).\n- wifi: mac80211: Sanity check tx bitrate if not provided by driver (bsc#1227149).\n- wifi: mac80211: Schedule regulatory channels check on bandwith change (bsc#1227149).\n- wifi: mac80211: Skip association timeout update after comeback rejection (bsc#1227149).\n- wifi: mac80211: add a driver callback to add vif debugfs (bsc#1227149).\n- wifi: mac80211: add a driver callback to check active_links (bsc#1227149).\n- wifi: mac80211: add a flag to disallow puncturing (bsc#1227149).\n- wifi: mac80211: add back SPDX identifier (bsc#1227149).\n- wifi: mac80211: add ieee80211_tdls_sta_link_id() (stable-fixes).\n- wifi: mac80211: add link id to ieee80211_gtk_rekey_add() (bsc#1227149).\n- wifi: mac80211: add link id to mgd_prepare_tx() (bsc#1227149).\n- wifi: mac80211: add more ops assertions (bsc#1227149).\n- wifi: mac80211: add more warnings about inserting sta info (bsc#1227149).\n- wifi: mac80211: add support for SPP A-MSDUs (bsc#1227149).\n- wifi: mac80211: add support for mld in ieee80211_chswitch_done (bsc#1227149).\n- wifi: mac80211: add support for parsing TID to Link mapping element (bsc#1227149).\n- wifi: mac80211: add/remove driver debugfs entries as appropriate (bsc#1227149).\n- wifi: mac80211: additions to change_beacon() (bsc#1227149).\n- wifi: mac80211: address some kerneldoc warnings (bsc#1227149).\n- wifi: mac80211: allow 64-bit radiotap timestamps (bsc#1227149).\n- wifi: mac80211: allow for_each_sta_active_link() under RCU (bsc#1227149).\n- wifi: mac80211: apply mcast rate only if interface is up (stable-fixes).\n- wifi: mac80211: cancel multi-link reconf work on disconnect (git-fixes).\n- wifi: mac80211: chanctx emulation set CHANGE_CHANNEL when in_reconfig (git-fixes).\n- wifi: mac80211: check EHT/TTLM action frame length (bsc#1227149).\n- wifi: mac80211: check wiphy mutex in ops (bsc#1227149).\n- wifi: mac80211: cleanup airtime arithmetic with ieee80211_sta_keep_active() (bsc#1227149).\n- wifi: mac80211: cleanup auth_data only if association continues (bsc#1227149).\n- wifi: mac80211: convert A-MPDU work to wiphy work (bsc#1227149).\n- wifi: mac80211: correctly parse Spatial Reuse Parameter Set element (git-fixes).\n- wifi: mac80211: correctly set active links upon TTLM (bsc#1227149).\n- wifi: mac80211: correcty limit wider BW TDLS STAs (git-fixes).\n- wifi: mac80211: debugfs: lock wiphy instead of RTNL (bsc#1227149).\n- wifi: mac80211: describe return values in kernel-doc (bsc#1227149).\n- wifi: mac80211: disable softirqs for queued frame handling (git-fixes).\n- wifi: mac80211: do not connect to an AP while it\u0027s in a CSA process (bsc#1227149).\n- wifi: mac80211: do not re-add debugfs entries during resume (bsc#1227149).\n- wifi: mac80211: do not select link ID if not provided in scan request (bsc#1227149).\n- wifi: mac80211: do not set ESS capab bit in assoc request (bsc#1227149).\n- wifi: mac80211: do not use rate mask for scanning (stable-fixes).\n- wifi: mac80211: drop robust action frames before assoc (bsc#1227149).\n- wifi: mac80211: drop spurious WARN_ON() in ieee80211_ibss_csa_beacon() (bsc#1227149).\n- wifi: mac80211: ensure beacon is non-S1G prior to extracting the beacon timestamp field (stable-fixes).\n- wifi: mac80211: ethtool: always hold wiphy mutex (bsc#1227149).\n- wifi: mac80211: ethtool: hold wiphy mutex (bsc#1227149).\n- wifi: mac80211: expand __ieee80211_data_to_8023() status (bsc#1227149).\n- wifi: mac80211: extend wiphy lock in interface removal (bsc#1227149).\n- wifi: mac80211: fix BA session teardown race (bsc#1227149).\n- wifi: mac80211: fix BSS_CHANGED_UNSOL_BCAST_PROBE_RESP (bsc#1227149).\n- wifi: mac80211: fix SMPS status handling (bsc#1227149).\n- wifi: mac80211: fix TXQ error path and cleanup (bsc#1227149).\n- wifi: mac80211: fix UBSAN noise in ieee80211_prep_hw_scan() (stable-fixes).\n- wifi: mac80211: fix a expired vs. cancel race in roc (bsc#1227149).\n- wifi: mac80211: fix advertised TTLM scheduling (bsc#1227149).\n- wifi: mac80211: fix another key installation error path (bsc#1227149).\n- wifi: mac80211: fix change_address deadlock during unregister (bsc#1227149).\n- wifi: mac80211: fix channel switch link data (bsc#1227149).\n- wifi: mac80211: fix driver debugfs for vif type change (bsc#1227149).\n- wifi: mac80211: fix error path key leak (bsc#1227149).\n- wifi: mac80211: fix header kernel-doc typos (bsc#1227149).\n- wifi: mac80211: fix ieee80211_drop_unencrypted_mgmt return type/value (bsc#1227149).\n- wifi: mac80211: fix monitor channel with chanctx emulation (bsc#1227149).\n- wifi: mac80211: fix potential key leak (bsc#1227149).\n- wifi: mac80211: fix spelling typo in comment (bsc#1227149).\n- wifi: mac80211: fix unsolicited broadcast probe config (bsc#1227149).\n- wifi: mac80211: fix various kernel-doc issues (bsc#1227149).\n- wifi: mac80211: fixes in FILS discovery updates (bsc#1227149).\n- wifi: mac80211: flush STA queues on unauthorization (bsc#1227149).\n- wifi: mac80211: flush wiphy work where appropriate (bsc#1227149).\n- wifi: mac80211: handle debugfs when switching to/from MLO (bsc#1227149).\n- wifi: mac80211: handle tasklet frames before stopping (stable-fixes).\n- wifi: mac80211: hold wiphy lock in netdev/link debugfs (bsc#1227149).\n- wifi: mac80211: hold wiphy_lock around concurrency checks (bsc#1227149).\n- wifi: mac80211: improve CSA/ECSA connection refusal (bsc#1227149).\n- wifi: mac80211: initialize SMPS mode correctly (bsc#1227149).\n- wifi: mac80211: lock wiphy for aggregation debugfs (bsc#1227149).\n- wifi: mac80211: lock wiphy in IP address notifier (bsc#1227149).\n- wifi: mac80211: make mgd_protect_tdls_discover MLO-aware (bsc#1227149).\n- wifi: mac80211: mesh: Fix leak of mesh_preq_queue objects (git-fixes).\n- wifi: mac80211: mesh: Remove unused function declaration mesh_ids_set_default() (bsc#1227149).\n- wifi: mac80211: mesh: fix some kdoc warnings (bsc#1227149).\n- wifi: mac80211: mesh: init nonpeer_pm to active by default in mesh sdata (stable-fixes).\n- wifi: mac80211: move CSA finalize to wiphy work (bsc#1227149).\n- wifi: mac80211: move DFS CAC work to wiphy work (bsc#1227149).\n- wifi: mac80211: move TDLS work to wiphy work (bsc#1227149).\n- wifi: mac80211: move color change finalize to wiphy work (bsc#1227149).\n- wifi: mac80211: move dynamic PS to wiphy work (bsc#1227149).\n- wifi: mac80211: move filter reconfig to wiphy work (bsc#1227149).\n- wifi: mac80211: move key tailroom work to wiphy work (bsc#1227149).\n- wifi: mac80211: move link activation work to wiphy work (bsc#1227149).\n- wifi: mac80211: move monitor work to wiphy work (bsc#1227149).\n- wifi: mac80211: move tspec work to wiphy work (bsc#1227149).\n- wifi: mac80211: process and save negotiated TID to Link mapping request (bsc#1227149).\n- wifi: mac80211: purge TX queues in flush_queues flow (bsc#1227149).\n- wifi: mac80211: reduce iflist_mtx (bsc#1227149).\n- wifi: mac80211: reject MLO channel configuration if not supported (bsc#1227149).\n- wifi: mac80211: relax RCU check in for_each_vif_active_link() (bsc#1227149).\n- wifi: mac80211: remove RX_DROP_UNUSABLE (bsc#1227149).\n- wifi: mac80211: remove ampdu_mlme.mtx (bsc#1227149).\n- wifi: mac80211: remove chanctx_mtx (bsc#1227149).\n- wifi: mac80211: remove key_mtx (bsc#1227149).\n- wifi: mac80211: remove local-\u003emtx (bsc#1227149).\n- wifi: mac80211: remove redundant ML element check (bsc#1227149).\n- wifi: mac80211: remove shifted rate support (bsc#1227149).\n- wifi: mac80211: remove sta_mtx (bsc#1227149).\n- wifi: mac80211: remove unnecessary struct forward declaration (bsc#1227149).\n- wifi: mac80211: rename ieee80211_tx_status() to ieee80211_tx_status_skb() (bsc#1227149).\n- wifi: mac80211: rename struct cfg80211_rx_assoc_resp to cfg80211_rx_assoc_resp_data (bsc#1227149).\n- wifi: mac80211: report per-link error during association (bsc#1227149).\n- wifi: mac80211: reset negotiated TTLM on disconnect (git-fixes).\n- wifi: mac80211: rework RX timestamp flags (bsc#1227149).\n- wifi: mac80211: rework ack_frame_id handling a bit (bsc#1227149).\n- wifi: mac80211: rx.c: fix sentence grammar (bsc#1227149).\n- wifi: mac80211: set wiphy for virtual monitors (bsc#1227149).\n- wifi: mac80211: simplify non-chanctx drivers (bsc#1227149).\n- wifi: mac80211: split ieee80211_drop_unencrypted_mgmt() return value (bsc#1227149).\n- wifi: mac80211: sta_info.c: fix sentence grammar (bsc#1227149).\n- wifi: mac80211: support antenna control in injection (bsc#1227149).\n- wifi: mac80211: support handling of advertised TID-to-link mapping (bsc#1227149).\n- wifi: mac80211: take MBSSID/EHT data also from probe resp (bsc#1227149).\n- wifi: mac80211: take wiphy lock for MAC addr change (bsc#1227149).\n- wifi: mac80211: tx: clarify conditions in if statement (bsc#1227149).\n- wifi: mac80211: update beacon counters per link basis (bsc#1227149).\n- wifi: mac80211: update some locking documentation (bsc#1227149).\n- wifi: mac80211: update the rx_chains after set_antenna() (bsc#1227149).\n- wifi: mac80211: use bandwidth indication element for CSA (bsc#1227149).\n- wifi: mac80211: use deflink and fix typo in link ID check (bsc#1227149).\n- wifi: mac80211: use wiphy locked debugfs for sdata/link (bsc#1227149).\n- wifi: mac80211: use wiphy locked debugfs helpers for agg_status (bsc#1227149).\n- wifi: mt7601u: delete dead code checking debugfs returns (bsc#1227149).\n- wifi: mt7601u: replace strlcpy() with strscpy() (bsc#1227149).\n- wifi: mt76: Annotate struct mt76_rx_tid with __counted_by (bsc#1227149).\n- wifi: mt76: Convert to platform remove callback returning void (bsc#1227149).\n- wifi: mt76: Remove redundant assignment to variable tidno (bsc#1227149).\n- wifi: mt76: Remove unnecessary (void*) conversions (bsc#1227149).\n- wifi: mt76: Replace strlcpy() with strscpy() (bsc#1227149).\n- wifi: mt76: Use PTR_ERR_OR_ZERO() to simplify code (bsc#1227149).\n- wifi: mt76: add DMA mapping error check in mt76_alloc_txwi() (bsc#1227149).\n- wifi: mt76: add ability to explicitly forbid LED registration with DT (bsc#1227149).\n- wifi: mt76: add support for providing eeprom in nvmem cells (bsc#1227149).\n- wifi: mt76: add tx_nss histogram to ethtool stats (bsc#1227149).\n- wifi: mt76: change txpower init to per-phy (bsc#1227149).\n- wifi: mt76: check sta rx control frame to multibss capability (bsc#1227149).\n- wifi: mt76: check txs format before getting skb by pid (bsc#1227149).\n- wifi: mt76: check vif type before reporting cca and csa (bsc#1227149).\n- wifi: mt76: connac: add MBSSID support for mt7996 (bsc#1227149).\n- wifi: mt76: connac: add beacon duplicate TX mode support for mt7996 (bsc#1227149).\n- wifi: mt76: connac: add beacon protection support for mt7996 (bsc#1227149).\n- wifi: mt76: connac: add connac3 mac library (bsc#1227149).\n- wifi: mt76: connac: add data field in struct tlv (bsc#1227149).\n- wifi: mt76: connac: add eht support for phy mode config (bsc#1227149).\n- wifi: mt76: connac: add eht support for tx power (bsc#1227149).\n- wifi: mt76: connac: add firmware support for mt7992 (bsc#1227149).\n- wifi: mt76: connac: add more unified command IDs (bsc#1227149).\n- wifi: mt76: connac: add more unified event IDs (bsc#1227149).\n- wifi: mt76: connac: add new definition of tx descriptor (bsc#1227149).\n- wifi: mt76: connac: add support for dsp firmware download (bsc#1227149).\n- wifi: mt76: connac: add support to set ifs time by mcu command (bsc#1227149).\n- wifi: mt76: connac: add thermal protection support for mt7996 (bsc#1227149).\n- wifi: mt76: connac: check for null before dereferencing (bsc#1227149).\n- wifi: mt76: connac: export functions for mt7925 (bsc#1227149).\n- wifi: mt76: connac: introduce helper for mt7925 chipset (bsc#1227149).\n- wifi: mt76: connac: set correct muar_idx for mt799x chipsets (bsc#1227149).\n- wifi: mt76: connac: set fixed_bw bit in TX descriptor for fixed rate frames (bsc#1227149).\n- wifi: mt76: connac: use muar idx 0xe for non-mt799x as well (bsc#1227149).\n- wifi: mt76: disable HW AMSDU when using fixed rate (bsc#1227149).\n- wifi: mt76: dma: introduce __mt76_dma_queue_reset utility routine (bsc#1227149).\n- wifi: mt76: enable UNII-4 channel 177 support (bsc#1227149).\n- wifi: mt76: fix race condition related to checking tx queue fill status (bsc#1227149).\n- wifi: mt76: fix the issue of missing txpwr settings from ch153 to ch177 (bsc#1227149).\n- wifi: mt76: fix typo in mt76_get_of_eeprom_from_nvmem function (bsc#1227149).\n- wifi: mt76: increase MT_QFLAG_WED_TYPE size (bsc#1227149).\n- wifi: mt76: introduce mt76_queue_is_wed_tx_free utility routine (bsc#1227149).\n- wifi: mt76: introduce wed pointer in mt76_queue (bsc#1227149).\n- wifi: mt76: limit support of precal loading for mt7915 to MTD only (bsc#1227149).\n- wifi: mt76: make mt76_get_of_eeprom static again (bsc#1227149).\n- wifi: mt76: mmio: move mt76_mmio_wed_{init,release}_rx_buf in common code (bsc#1227149).\n- wifi: mt76: move ampdu_state in mt76_wcid (bsc#1227149).\n- wifi: mt76: move mt76_mmio_wed_offload_{enable,disable} in common code (bsc#1227149).\n- wifi: mt76: move mt76_net_setup_tc in common code (bsc#1227149).\n- wifi: mt76: move rate info in mt76_vif (bsc#1227149).\n- wifi: mt76: move wed reset common code in mt76 module (bsc#1227149).\n- wifi: mt76: mt7603: add missing register initialization for MT7628 (bsc#1227149).\n- wifi: mt76: mt7603: disable A-MSDU tx support on MT7628 (bsc#1227149).\n- wifi: mt76: mt7603: fix beacon interval after disabling a single vif (bsc#1227149).\n- wifi: mt76: mt7603: fix tx filter/flush function (bsc#1227149).\n- wifi: mt76: mt7603: rely on shared poll_list field (bsc#1227149).\n- wifi: mt76: mt7603: rely on shared sta_poll_list and sta_poll_lock (bsc#1227149).\n- wifi: mt76: mt7615: add missing chanctx ops (bsc#1227149).\n- wifi: mt76: mt7615: enable BSS_CHANGED_MU_GROUPS support (bsc#1227149).\n- wifi: mt76: mt7615: rely on shared poll_list field (bsc#1227149).\n- wifi: mt76: mt7615: rely on shared sta_poll_list and sta_poll_lock (bsc#1227149).\n- wifi: mt76: mt76_connac3: move lmac queue enumeration in mt76_connac3_mac.h (bsc#1227149).\n- wifi: mt76: mt76x02: fix return value check in mt76x02_mac_process_rx (bsc#1227149).\n- wifi: mt76: mt76x2u: add netgear wdna3100v3 to device table (bsc#1227149).\n- wifi: mt76: mt7915 add tc offloading support (bsc#1227149).\n- wifi: mt76: mt7915: accumulate mu-mimo ofdma muru stats (bsc#1227149).\n- wifi: mt76: mt7915: add locking for accessing mapped registers (bsc#1227149).\n- wifi: mt76: mt7915: add missing chanctx ops (bsc#1227149).\n- wifi: mt76: mt7915: add support for MT7981 (bsc#1227149).\n- wifi: mt76: mt7915: also MT7981 is 3T3R but nss2 on 5 GHz band (bsc#1227149).\n- wifi: mt76: mt7915: disable WFDMA Tx/Rx during SER recovery (bsc#1227149).\n- wifi: mt76: mt7915: drop return in mt7915_sta_statistics (bsc#1227149).\n- wifi: mt76: mt7915: fix EEPROM offset of TSSI flag on MT7981 (bsc#1227149).\n- wifi: mt76: mt7915: fix error recovery with WED enabled (bsc#1227149).\n- wifi: mt76: mt7915: fix monitor mode issues (bsc#1227149).\n- wifi: mt76: mt7915: move mib_stats structure in mt76.h (bsc#1227149).\n- wifi: mt76: mt7915: move poll_list in mt76_wcid (bsc#1227149).\n- wifi: mt76: mt7915: move sta_poll_list and sta_poll_lock in mt76_dev (bsc#1227149).\n- wifi: mt76: mt7915: report tx retries/failed counts for non-WED path (bsc#1227149).\n- wifi: mt76: mt7915: update mpdu density capability (bsc#1227149).\n- wifi: mt76: mt7915: update mt798x_wmac_adie_patch_7976 (bsc#1227149).\n- wifi: mt76: mt7921: Support temp sensor (bsc#1227149).\n- wifi: mt76: mt7921: add 6GHz power type support for clc (bsc#1227149).\n- wifi: mt76: mt7921: convert acpisar and clc pointers to void (bsc#1227149).\n- wifi: mt76: mt7921: enable set txpower for UNII-4 (bsc#1227149).\n- wifi: mt76: mt7921: fix 6GHz disabled by the missing default CLC config (bsc#1227149).\n- wifi: mt76: mt7921: fix CLC command timeout when suspend/resume (bsc#1227149).\n- wifi: mt76: mt7921: fix a potential association failure upon resuming (bsc#1227149).\n- wifi: mt76: mt7921: fix kernel panic by accessing invalid 6GHz channel info (bsc#1227149).\n- wifi: mt76: mt7921: fix suspend issue on MediaTek COB platform (bsc#1227149).\n- wifi: mt76: mt7921: fix the unfinished command of regd_notifier before suspend (bsc#1227149).\n- wifi: mt76: mt7921: fix wrong 6Ghz power type (bsc#1227149).\n- wifi: mt76: mt7921: get regulatory information from the clc event (bsc#1227149).\n- wifi: mt76: mt7921: get rid of MT7921_RESET_TIMEOUT marco (bsc#1227149).\n- wifi: mt76: mt7921: make mt7921_mac_sta_poll static (bsc#1227149).\n- wifi: mt76: mt7921: move acpi_sar code in mt792x-lib module (bsc#1227149).\n- wifi: mt76: mt7921: move common register definition in mt792x_regs.h (bsc#1227149).\n- wifi: mt76: mt7921: move connac nic capability handling to mt7921 (bsc#1227149).\n- wifi: mt76: mt7921: move debugfs shared code in mt792x-lib module (bsc#1227149).\n- wifi: mt76: mt7921: move dma shared code in mt792x-lib module (bsc#1227149).\n- wifi: mt76: mt7921: move hif_ops macro in mt792x.h (bsc#1227149).\n- wifi: mt76: mt7921: move init shared code in mt792x-lib module (bsc#1227149).\n- wifi: mt76: mt7921: move mac shared code in mt792x-lib module (bsc#1227149).\n- wifi: mt76: mt7921: move mt7921_dma_init in pci.c (bsc#1227149).\n- wifi: mt76: mt7921: move mt7921u_disconnect mt792x-lib (bsc#1227149).\n- wifi: mt76: mt7921: move mt792x_hw_dev in mt792x.h (bsc#1227149).\n- wifi: mt76: mt7921: move mt792x_mutex_{acquire/release} in mt792x.h (bsc#1227149).\n- wifi: mt76: mt7921: move runtime-pm pci code in mt792x-lib (bsc#1227149).\n- wifi: mt76: mt7921: move shared runtime-pm code on mt792x-lib (bsc#1227149).\n- wifi: mt76: mt7921: reduce the size of MCU firmware download Rx queue (bsc#1227149).\n- wifi: mt76: mt7921: rely on mib_stats shared definition (bsc#1227149).\n- wifi: mt76: mt7921: rely on shared poll_list field (bsc#1227149).\n- wifi: mt76: mt7921: rely on shared sta_poll_list and sta_poll_lock (bsc#1227149).\n- wifi: mt76: mt7921: remove macro duplication in regs.h (bsc#1227149).\n- wifi: mt76: mt7921: rename mt7921_dev in mt792x_dev (bsc#1227149).\n- wifi: mt76: mt7921: rename mt7921_hif_ops in mt792x_hif_ops (bsc#1227149).\n- wifi: mt76: mt7921: rename mt7921_phy in mt792x_phy (bsc#1227149).\n- wifi: mt76: mt7921: rename mt7921_sta in mt792x_sta (bsc#1227149).\n- wifi: mt76: mt7921: rename mt7921_vif in mt792x_vif (bsc#1227149).\n- wifi: mt76: mt7921: support 5.9/6GHz channel config in acpi (bsc#1227149).\n- wifi: mt76: mt7921: update the channel usage when the regd domain changed (bsc#1227149).\n- wifi: mt76: mt7921e: report tx retries/failed counts in tx free event (bsc#1227149).\n- wifi: mt76: mt7921s: fix potential hung tasks during chip recovery (stable-fixes).\n- wifi: mt76: mt7925: add Mediatek Wi-Fi7 driver for mt7925 chips (bsc#1227149).\n- wifi: mt76: mt7925: add flow to avoid chip bt function fail (bsc#1227149).\n- wifi: mt76: mt7925: add support to set ifs time by mcu command (bsc#1227149).\n- wifi: mt76: mt7925: ensure 4-byte alignment for suspend \u0026 wow command (bsc#1227149).\n- wifi: mt76: mt7925: fix SAP no beacon issue in 5Ghz and 6Ghz band (bsc#1227149).\n- wifi: mt76: mt7925: fix WoW failed in encrypted mode (bsc#1227149).\n- wifi: mt76: mt7925: fix connect to 80211b mode fail in 2Ghz band (bsc#1227149).\n- wifi: mt76: mt7925: fix fw download fail (bsc#1227149).\n- wifi: mt76: mt7925: fix mcu query command fail (bsc#1227149).\n- wifi: mt76: mt7925: fix the wrong data type for scan command (bsc#1227149).\n- wifi: mt76: mt7925: fix the wrong header translation config (bsc#1227149).\n- wifi: mt76: mt7925: fix typo in mt7925_init_he_caps (bsc#1227149).\n- wifi: mt76: mt7925: fix wmm queue mapping (bsc#1227149).\n- wifi: mt76: mt7925: remove iftype from mt7925_init_eht_caps signature (bsc#1227149).\n- wifi: mt76: mt7925: support temperature sensor (bsc#1227149).\n- wifi: mt76: mt7925: update PCIe DMA settings (bsc#1227149).\n- wifi: mt76: mt7925e: fix use-after-free in free_irq() (bsc#1227149).\n- wifi: mt76: mt792x: add the illegal value check for mtcl table of acpi (bsc#1227149).\n- wifi: mt76: mt792x: fix ethtool warning (bsc#1227149).\n- wifi: mt76: mt792x: introduce mt792x-lib module (bsc#1227149).\n- wifi: mt76: mt792x: introduce mt792x-usb module (bsc#1227149).\n- wifi: mt76: mt792x: introduce mt792x_irq_map (bsc#1227149).\n- wifi: mt76: mt792x: move MT7921_PM_TIMEOUT and MT7921_HW_SCAN_TIMEOUT in common code (bsc#1227149).\n- wifi: mt76: mt792x: move more dma shared code in mt792x_dma (bsc#1227149).\n- wifi: mt76: mt792x: move mt7921_load_firmware in mt792x-lib module (bsc#1227149).\n- wifi: mt76: mt792x: move mt7921_skb_add_usb_sdio_hdr in mt792x module (bsc#1227149).\n- wifi: mt76: mt792x: move shared structure definition in mt792x.h (bsc#1227149).\n- wifi: mt76: mt792x: move some common usb code in mt792x module (bsc#1227149).\n- wifi: mt76: mt792x: support mt7925 chip init (bsc#1227149).\n- wifi: mt76: mt792x: update the country list of EU for ACPI SAR (bsc#1227149).\n- wifi: mt76: mt792xu: enable dmashdl support (bsc#1227149).\n- wifi: mt76: mt7996: Add mcu commands for getting sta tx statistic (bsc#1227149).\n- wifi: mt76: mt7996: Use DECLARE_FLEX_ARRAY() and fix -Warray-bounds warnings (bsc#1227149).\n- wifi: mt76: mt7996: add DMA support for mt7992 (bsc#1227149).\n- wifi: mt76: mt7996: add TX statistics for EHT mode in debugfs (bsc#1227149).\n- wifi: mt76: mt7996: add muru support (bsc#1227149).\n- wifi: mt76: mt7996: add sanity checks for background radar trigger (stable-fixes).\n- wifi: mt76: mt7996: add support for variants with auxiliary RX path (bsc#1227149).\n- wifi: mt76: mt7996: add thermal sensor device support (bsc#1227149).\n- wifi: mt76: mt7996: add txpower setting support (bsc#1227149).\n- wifi: mt76: mt7996: adjust WFDMA settings to improve performance (bsc#1227149).\n- wifi: mt76: mt7996: adjust interface num and wtbl size for mt7992 (bsc#1227149).\n- wifi: mt76: mt7996: align the format of fixed rate command (bsc#1227149).\n- wifi: mt76: mt7996: check txs format before getting skb by pid (bsc#1227149).\n- wifi: mt76: mt7996: disable WFDMA Tx/Rx during SER recovery (bsc#1227149).\n- wifi: mt76: mt7996: drop return in mt7996_sta_statistics (bsc#1227149).\n- wifi: mt76: mt7996: enable BSS_CHANGED_MU_GROUPS support (bsc#1227149).\n- wifi: mt76: mt7996: enable PPDU-TxS to host (bsc#1227149).\n- wifi: mt76: mt7996: enable VHT extended NSS BW feature (bsc#1227149).\n- wifi: mt76: mt7996: ensure 4-byte alignment for beacon commands (bsc#1227149).\n- wifi: mt76: mt7996: fix alignment of sta info event (bsc#1227149).\n- wifi: mt76: mt7996: fix fortify warning (bsc#1227149).\n- wifi: mt76: mt7996: fix fw loading timeout (bsc#1227149).\n- wifi: mt76: mt7996: fix mt7996_mcu_all_sta_info_event struct packing (bsc#1227149).\n- wifi: mt76: mt7996: fix potential memory leakage when reading chip temperature (bsc#1227149).\n- wifi: mt76: mt7996: fix size of txpower MCU command (bsc#1227149).\n- wifi: mt76: mt7996: fix uninitialized variable in mt7996_irq_tasklet() (bsc#1227149).\n- wifi: mt76: mt7996: fix uninitialized variable in parsing txfree (bsc#1227149).\n- wifi: mt76: mt7996: get tx_retries and tx_failed from txfree (bsc#1227149).\n- wifi: mt76: mt7996: handle IEEE80211_RC_SMPS_CHANGED (bsc#1227149).\n- wifi: mt76: mt7996: increase tx token size (bsc#1227149).\n- wifi: mt76: mt7996: introduce mt7996_band_valid() (bsc#1227149).\n- wifi: mt76: mt7996: mark GCMP IGTK unsupported (bsc#1227149).\n- wifi: mt76: mt7996: move radio ctrl commands to proper functions (bsc#1227149).\n- wifi: mt76: mt7996: only set vif teardown cmds at remove interface (bsc#1227149).\n- wifi: mt76: mt7996: rely on mib_stats shared definition (bsc#1227149).\n- wifi: mt76: mt7996: rely on shared poll_list field (bsc#1227149).\n- wifi: mt76: mt7996: rely on shared sta_poll_list and sta_poll_lock (bsc#1227149).\n- wifi: mt76: mt7996: remove TXS queue setting (bsc#1227149).\n- wifi: mt76: mt7996: remove periodic MPDU TXS request (bsc#1227149).\n- wifi: mt76: mt7996: rework ampdu params setting (bsc#1227149).\n- wifi: mt76: mt7996: rework register offsets for mt7992 (bsc#1227149).\n- wifi: mt76: mt7996: set DMA mask to 36 bits for boards with more than 4GB of RAM (bsc#1227149).\n- wifi: mt76: mt7996: support more options for mt7996_set_bitrate_mask() (bsc#1227149).\n- wifi: mt76: mt7996: support mt7992 eeprom loading (bsc#1227149).\n- wifi: mt76: mt7996: support per-band LED control (bsc#1227149).\n- wifi: mt76: mt7996: switch to mcu command for TX GI report (bsc#1227149).\n- wifi: mt76: mt7996: use u16 for val field in mt7996_mcu_set_rro signature (bsc#1227149).\n- wifi: mt76: permit to load precal from NVMEM cell for mt7915 (bsc#1227149).\n- wifi: mt76: permit to use alternative cell name to eeprom NVMEM load (bsc#1227149).\n- wifi: mt76: reduce spin_lock_bh held up in mt76_dma_rx_cleanup (bsc#1227149).\n- wifi: mt76: replace skb_put with skb_put_zero (stable-fixes).\n- wifi: mt76: report non-binding skb tx rate when WED is active (bsc#1227149).\n- wifi: mt76: set page_pool napi pointer for mmio devices (bsc#1227149).\n- wifi: mt76: split get_of_eeprom in subfunction (bsc#1227149).\n- wifi: mt76: usb: create a dedicated queue for psd traffic (bsc#1227149).\n- wifi: mt76: usb: store usb endpoint in mt76_queue (bsc#1227149).\n- wifi: mt76: use atomic iface iteration for pre-TBTT work (bsc#1227149).\n- wifi: mt76: use chainmask for power delta calculation (bsc#1227149).\n- wifi: mwifiex: Drop unused headers (bsc#1227149).\n- wifi: mwifiex: Fix interface type change (git-fixes).\n- wifi: mwifiex: Refactor 1-element array into flexible array in struct mwifiex_ie_types_chan_list_param_set (bsc#1227149).\n- wifi: mwifiex: Replace one-element array with flexible-array member in struct mwifiex_ie_types_rxba_sync (bsc#1227149).\n- wifi: mwifiex: Set WIPHY_FLAG_NETNS_OK flag (bsc#1227149).\n- wifi: mwifiex: Use default @max_active for workqueues (bsc#1227149).\n- wifi: mwifiex: Use helpers to check multicast addresses (bsc#1227149).\n- wifi: mwifiex: Use list_count_nodes() (bsc#1227149).\n- wifi: mwifiex: cleanup adapter data (bsc#1227149).\n- wifi: mwifiex: cleanup private data structures (bsc#1227149).\n- wifi: mwifiex: cleanup struct mwifiex_sdio_mpa_rx (bsc#1227149).\n- wifi: mwifiex: drop BUG_ON from TX paths (bsc#1227149).\n- wifi: mwifiex: fix comment typos in SDIO module (bsc#1227149).\n- wifi: mwifiex: followup PCIE and related cleanups (bsc#1227149).\n- wifi: mwifiex: handle possible mwifiex_write_reg() errors (bsc#1227149).\n- wifi: mwifiex: handle possible sscanf() errors (bsc#1227149).\n- wifi: mwifiex: mwifiex_process_sleep_confirm_resp(): remove unused priv variable (bsc#1227149).\n- wifi: mwifiex: prefer strscpy() over strlcpy() (bsc#1227149).\n- wifi: mwifiex: simplify PCIE write operations (bsc#1227149).\n- wifi: mwifiex: use MODULE_FIRMWARE to add firmware files metadata (bsc#1227149).\n- wifi: mwifiex: use cfg80211_ssid_eq() instead of mwifiex_ssid_cmp() (bsc#1227149).\n- wifi: mwifiex: use is_zero_ether_addr() instead of ether_addr_equal() (bsc#1227149).\n- wifi: mwifiex: use kstrtoX_from_user() in debugfs handlers (bsc#1227149).\n- wifi: nl80211: Avoid address calculations via out of bounds array indexing (git-fixes).\n- wifi: nl80211: Extend del pmksa support for SAE and OWE security (bsc#1227149).\n- wifi: nl80211: Remove unused declaration nl80211_pmsr_dump_results() (bsc#1227149).\n- wifi: nl80211: additions to NL80211_CMD_SET_BEACON (bsc#1227149).\n- wifi: nl80211: allow reporting wakeup for unprot deauth/disassoc (bsc#1227149).\n- wifi: nl80211: fixes to FILS discovery updates (bsc#1227149).\n- wifi: nl80211: refactor nl80211_send_mlme_event() arguments (bsc#1227149).\n- wifi: p54: Add missing MODULE_FIRMWARE macro (bsc#1227149).\n- wifi: p54: Annotate struct p54_cal_database with __counted_by (bsc#1227149).\n- wifi: p54: fix GCC format truncation warning with wiphy-\u003efw_version (bsc#1227149).\n- wifi: plfxlc: Drop unused include (bsc#1227149).\n- wifi: radiotap: add bandwidth definition of EHT U-SIG (bsc#1227149).\n- wifi: remove unused argument of ieee80211_get_tdls_action() (bsc#1227149).\n- wifi: rsi: fix restricted __le32 degrades to integer sparse warnings (bsc#1227149).\n- wifi: rsi: rsi_91x_coex: Remove unnecessary (void*) conversions (bsc#1227149).\n- wifi: rsi: rsi_91x_debugfs: Remove unnecessary (void*) conversions (bsc#1227149).\n- wifi: rsi: rsi_91x_hal: Remove unnecessary conversions (bsc#1227149).\n- wifi: rsi: rsi_91x_mac80211: Remove unnecessary conversions (bsc#1227149).\n- wifi: rsi: rsi_91x_main: Remove unnecessary (void*) conversions (bsc#1227149).\n- wifi: rsi: rsi_91x_sdio: Remove unnecessary (void*) conversions (bsc#1227149).\n- wifi: rsi: rsi_91x_sdio_ops: Remove unnecessary (void*) conversions (bsc#1227149).\n- wifi: rsi: rsi_91x_usb: Remove unnecessary (void*) conversions (bsc#1227149).\n- wifi: rsi: rsi_91x_usb_ops: Remove unnecessary (void*) conversions (bsc#1227149).\n- wifi: rt2x00: Simplify bool conversion (bsc#1227149).\n- wifi: rt2x00: correct MAC_SYS_CTRL register RX mask in R-Calibration (bsc#1227149).\n- wifi: rt2x00: disable RTS threshold for rt2800 by default (bsc#1227149).\n- wifi: rt2x00: fix MT7620 low RSSI issue (bsc#1227149).\n- wifi: rt2x00: fix rt2800 watchdog function (bsc#1227149).\n- wifi: rt2x00: fix the typo in comments (bsc#1227149).\n- wifi: rt2x00: improve MT7620 register initialization (bsc#1227149).\n- wifi: rt2x00: introduce DMA busy check watchdog for rt2800 (bsc#1227149).\n- wifi: rt2x00: limit MT7620 TX power based on eeprom calibration (bsc#1227149).\n- wifi: rt2x00: make watchdog param per device (bsc#1227149).\n- wifi: rt2x00: remove redundant check if u8 array element is less than zero (bsc#1227149).\n- wifi: rt2x00: remove useless code in rt2x00queue_create_tx_descriptor() (bsc#1227149).\n- wifi: rt2x00: rework MT7620 PA/LNA RF calibration (bsc#1227149).\n- wifi: rt2x00: rework MT7620 channel config function (bsc#1227149).\n- wifi: rt2x00: silence sparse warnings (bsc#1227149).\n- wifi: rt2x00: simplify rt2x00crypto_rx_insert_iv() (bsc#1227149).\n- wifi: rtl8xxxu: 8188e: convert usage of priv-\u003evif to priv-\u003evifs[0] (bsc#1227149).\n- wifi: rtl8xxxu: 8188f: Limit TX power index (git-fixes).\n- wifi: rtl8xxxu: Actually use macid in rtl8xxxu_gen2_report_connect (bsc#1227149).\n- wifi: rtl8xxxu: Add TP-Link TL-WN823N V2 (bsc#1227149).\n- wifi: rtl8xxxu: Add a description about the device ID 0x7392:0xb722 (bsc#1227149).\n- wifi: rtl8xxxu: Add beacon functions (bsc#1227149).\n- wifi: rtl8xxxu: Add parameter force to rtl8xxxu_refresh_rate_mask (bsc#1227149).\n- wifi: rtl8xxxu: Add parameter macid to update_rate_mask (bsc#1227149).\n- wifi: rtl8xxxu: Add parameter role to report_connect (bsc#1227149).\n- wifi: rtl8xxxu: Add set_tim() callback (bsc#1227149).\n- wifi: rtl8xxxu: Add sta_add() and sta_remove() callbacks (bsc#1227149).\n- wifi: rtl8xxxu: Add start_ap() callback (bsc#1227149).\n- wifi: rtl8xxxu: Allow creating interface in AP mode (bsc#1227149).\n- wifi: rtl8xxxu: Allow setting rts threshold to -1 (bsc#1227149).\n- wifi: rtl8xxxu: Clean up filter configuration (bsc#1227149).\n- wifi: rtl8xxxu: Declare AP mode support for 8188f (bsc#1227149).\n- wifi: rtl8xxxu: Enable AP mode for RTL8192EU (bsc#1227149).\n- wifi: rtl8xxxu: Enable AP mode for RTL8192FU (bsc#1227149).\n- wifi: rtl8xxxu: Enable AP mode for RTL8710BU (RTL8188GU) (bsc#1227149).\n- wifi: rtl8xxxu: Enable AP mode for RTL8723BU (bsc#1227149).\n- wifi: rtl8xxxu: Enable hw seq for mgmt/non-QoS data frames (bsc#1227149).\n- wifi: rtl8xxxu: Fix LED control code of RTL8192FU (bsc#1227149).\n- wifi: rtl8xxxu: Fix off by one initial RTS rate (bsc#1227149).\n- wifi: rtl8xxxu: Fix the TX power of RTL8192CU, RTL8723AU (stable-fixes).\n- wifi: rtl8xxxu: Put the macid in txdesc (bsc#1227149).\n- wifi: rtl8xxxu: Remove usage of ieee80211_get_tx_rate() (bsc#1227149).\n- wifi: rtl8xxxu: Remove usage of tx_info-\u003econtrol.rates[0].flags (bsc#1227149).\n- wifi: rtl8xxxu: Rename some registers (bsc#1227149).\n- wifi: rtl8xxxu: Select correct queue for beacon frames (bsc#1227149).\n- wifi: rtl8xxxu: Set maximum number of supported stations (bsc#1227149).\n- wifi: rtl8xxxu: Support USB RX aggregation for the newer chips (bsc#1227149).\n- wifi: rtl8xxxu: Support new chip RTL8192FU (bsc#1227149).\n- wifi: rtl8xxxu: add hw crypto support for AP mode (bsc#1227149).\n- wifi: rtl8xxxu: add macids for STA mode (bsc#1227149).\n- wifi: rtl8xxxu: add missing number of sec cam entries for all variants (bsc#1227149).\n- wifi: rtl8xxxu: check vif before using in rtl8xxxu_tx() (bsc#1227149).\n- wifi: rtl8xxxu: convert EN_DESC_ID of TX descriptor to le32 type (bsc#1227149).\n- wifi: rtl8xxxu: declare concurrent mode support for 8188f (bsc#1227149).\n- wifi: rtl8xxxu: do not parse CFO, if both interfaces are connected in STA mode (bsc#1227149).\n- wifi: rtl8xxxu: enable MFP support with security flag of RX descriptor (bsc#1227149).\n- wifi: rtl8xxxu: enable channel switch support (bsc#1227149).\n- wifi: rtl8xxxu: extend check for matching bssid to both interfaces (bsc#1227149).\n- wifi: rtl8xxxu: extend wifi connected check to both interfaces (bsc#1227149).\n- wifi: rtl8xxxu: fix error messages (bsc#1227149).\n- wifi: rtl8xxxu: fix mixed declarations in rtl8xxxu_set_aifs() (bsc#1227149).\n- wifi: rtl8xxxu: make instances of iface limit and combination to be static const (bsc#1227149).\n- wifi: rtl8xxxu: make supporting AP mode only on port 0 transparent (bsc#1227149).\n- wifi: rtl8xxxu: mark TOTOLINK N150UA V5/N150UA-B as tested (bsc#1227149).\n- wifi: rtl8xxxu: prepare supporting two virtual interfaces (bsc#1227149).\n- wifi: rtl8xxxu: remove assignment of priv-\u003evif in rtl8xxxu_bss_info_changed() (bsc#1227149).\n- wifi: rtl8xxxu: remove obsolete priv-\u003evif (bsc#1227149).\n- wifi: rtl8xxxu: rtl8xxxu_rx_complete(): remove unnecessary return (bsc#1227149).\n- wifi: rtl8xxxu: support multiple interface in start_ap() (bsc#1227149).\n- wifi: rtl8xxxu: support multiple interfaces in bss_info_changed() (bsc#1227149).\n- wifi: rtl8xxxu: support multiple interfaces in configure_filter() (bsc#1227149).\n- wifi: rtl8xxxu: support multiple interfaces in set_aifs() (bsc#1227149).\n- wifi: rtl8xxxu: support multiple interfaces in update_beacon_work_callback() (bsc#1227149).\n- wifi: rtl8xxxu: support multiple interfaces in watchdog_callback() (bsc#1227149).\n- wifi: rtl8xxxu: support multiple interfaces in {add,remove}_interface() (bsc#1227149).\n- wifi: rtl8xxxu: support setting bssid register for multiple interfaces (bsc#1227149).\n- wifi: rtl8xxxu: support setting linktype for both interfaces (bsc#1227149).\n- wifi: rtl8xxxu: support setting mac address register for both interfaces (bsc#1227149).\n- wifi: rtl8xxxu: update rate mask per sta (bsc#1227149).\n- wifi: rtlwifi: Convert to use PCIe capability accessors (bsc#1227149).\n- wifi: rtlwifi: Ignore IEEE80211_CONF_CHANGE_RETRY_LIMITS (bsc#1227149).\n- wifi: rtlwifi: Remove bridge vendor/device ids (bsc#1227149).\n- wifi: rtlwifi: Remove rtl_intf_ops.read_efuse_byte (bsc#1227149).\n- wifi: rtlwifi: Remove unused PCI related defines and struct (bsc#1227149).\n- wifi: rtlwifi: Speed up firmware loading for USB (bsc#1227149).\n- wifi: rtlwifi: cleanup USB interface (bsc#1227149).\n- wifi: rtlwifi: cleanup few rtlxxx_tx_fill_desc() routines (bsc#1227149).\n- wifi: rtlwifi: cleanup few rtlxxxx_set_hw_reg() routines (bsc#1227149).\n- wifi: rtlwifi: cleanup struct rtl_hal (bsc#1227149).\n- wifi: rtlwifi: cleanup struct rtl_phy (bsc#1227149).\n- wifi: rtlwifi: cleanup struct rtl_ps_ctl (bsc#1227149).\n- wifi: rtlwifi: drop chk_switch_dmdp() from HAL interface (bsc#1227149).\n- wifi: rtlwifi: drop fill_fake_txdesc() from HAL interface (bsc#1227149).\n- wifi: rtlwifi: drop pre_fill_tx_bd_desc() from HAL interface (bsc#1227149).\n- wifi: rtlwifi: drop unused const_amdpci_aspm (bsc#1227149).\n- wifi: rtlwifi: remove misused flag from HAL data (bsc#1227149).\n- wifi: rtlwifi: remove unreachable code in rtl92d_dm_check_edca_turbo() (bsc#1227149).\n- wifi: rtlwifi: remove unused dualmac control leftovers (bsc#1227149).\n- wifi: rtlwifi: remove unused timer and related code (bsc#1227149).\n- wifi: rtlwifi: rtl8192cu: Fix 2T2R chip type detection (bsc#1227149).\n- wifi: rtlwifi: rtl8192cu: Fix TX aggregation (bsc#1227149).\n- wifi: rtlwifi: rtl8192de: Do not read register in _rtl92de_query_rxphystatus (bsc#1227149).\n- wifi: rtlwifi: rtl8192de: Fix 5 GHz TX power (stable-fixes).\n- wifi: rtlwifi: rtl8192de: Fix endianness issue in RX path (stable-fixes).\n- wifi: rtlwifi: rtl8192de: Fix low speed with WPA3-SAE (stable-fixes).\n- wifi: rtlwifi: rtl8723: Remove unused function rtl8723_cmd_send_packet() (bsc#1227149).\n- wifi: rtlwifi: rtl8821ae: Access full PMCS reg and use pci_regs.h (bsc#1227149).\n- wifi: rtlwifi: rtl8821ae: Add pdev into _rtl8821ae_clear_pci_pme_status() (bsc#1227149).\n- wifi: rtlwifi: rtl8821ae: Remove unnecessary PME_Status bit set (bsc#1227149).\n- wifi: rtlwifi: rtl8821ae: Reverse PM Capability exists check (bsc#1227149).\n- wifi: rtlwifi: rtl8821ae: Use pci_find_capability() (bsc#1227149).\n- wifi: rtlwifi: rtl8821ae: phy: remove some useless code (bsc#1227149).\n- wifi: rtlwifi: rtl8821ae: phy: using calculate_bit_shift() (bsc#1227149).\n- wifi: rtlwifi: rtl92ee_dm_dynamic_primary_cca_check(): fix typo in function name (bsc#1227149).\n- wifi: rtlwifi: rtl_usb: Store the endpoint addresses (bsc#1227149).\n- wifi: rtlwifi: rtl_usb: Use sync register writes (bsc#1227149).\n- wifi: rtlwifi: set initial values for unexpected cases of USB endpoint priority (bsc#1227149).\n- wifi: rtlwifi: simplify LED management (bsc#1227149).\n- wifi: rtlwifi: simplify TX command fill callbacks (bsc#1227149).\n- wifi: rtlwifi: simplify rtl_action_proc() and rtl_tx_agg_start() (bsc#1227149).\n- wifi: rtlwifi: use convenient list_count_nodes() (bsc#1227149).\n- wifi: rtlwifi: use eth_broadcast_addr() to assign broadcast address (bsc#1227149).\n- wifi: rtlwifi: use helper function rtl_get_hdr() (bsc#1227149).\n- wifi: rtlwifi: use unsigned long for bt_coexist_8723 timestamp (bsc#1227149).\n- wifi: rtlwifi: use unsigned long for rtl_bssid_entry timestamp (bsc#1227149).\n- wifi: rtw88: 8821c: tweak CCK TX filter setting for SRRC regulation (bsc#1227149).\n- wifi: rtw88: 8821c: update TX power limit to V67 (bsc#1227149).\n- wifi: rtw88: 8822c: update TX power limit to V70 (bsc#1227149).\n- wifi: rtw88: 8822ce: refine power parameters for RFE type 5 (bsc#1227149).\n- wifi: rtw88: Add support for the SDIO based RTL8723DS chipset (bsc#1227149).\n- wifi: rtw88: Fix AP mode incorrect DTIM behavior (bsc#1227149).\n- wifi: rtw88: Fix action frame transmission fail before association (bsc#1227149).\n- wifi: rtw88: Skip high queue in hci_flush (bsc#1227149).\n- wifi: rtw88: Stop high queue during scan (bsc#1227149).\n- wifi: rtw88: Use random MAC when efuse MAC invalid (bsc#1227149).\n- wifi: rtw88: add missing unwind goto for __rtw_download_firmware() (bsc#1227149).\n- wifi: rtw88: debug: add to check if debug mask is enabled (bsc#1227149).\n- wifi: rtw88: debug: remove wrapper of rtw_dbg() (bsc#1227149).\n- wifi: rtw88: dump firmware debug information in abnormal state (bsc#1227149).\n- wifi: rtw88: fix incorrect error codes in rtw_debugfs_copy_from_user (bsc#1227149).\n- wifi: rtw88: fix incorrect error codes in rtw_debugfs_set_* (bsc#1227149).\n- wifi: rtw88: fix not entering PS mode after AP stops (bsc#1227149).\n- wifi: rtw88: fix typo rtw8822cu_probe (bsc#1227149).\n- wifi: rtw88: process VO packets without workqueue to avoid PTK rekey failed (bsc#1227149).\n- wifi: rtw88: refine register based H2C command (bsc#1227149).\n- wifi: rtw88: regd: configure QATAR and UK (bsc#1227149).\n- wifi: rtw88: regd: update regulatory map to R64-R42 (bsc#1227149).\n- wifi: rtw88: remove unused USB bulkout size set (bsc#1227149).\n- wifi: rtw88: remove unused and set but unused leftovers (bsc#1227149).\n- wifi: rtw88: rtw8723d: Implement RTL8723DS (SDIO) efuse parsing (bsc#1227149).\n- wifi: rtw88: simplify __rtw_tx_work() (bsc#1227149).\n- wifi: rtw88: simplify vif iterators (bsc#1227149).\n- wifi: rtw88: use cfg80211_ssid_eq() instead of rtw_ssid_equal() (bsc#1227149).\n- wifi: rtw88: use kstrtoX_from_user() in debugfs handlers (bsc#1227149).\n- wifi: rtw88: use struct instead of macros to set TX desc (bsc#1227149).\n- wifi: rtw89: 52c: rfk: disable DPK during MCC (bsc#1227149).\n- wifi: rtw89: 52c: rfk: refine MCC channel info notification (bsc#1227149).\n- wifi: rtw89: 8851b: add 8851B basic chip_info (bsc#1227149).\n- wifi: rtw89: 8851b: add 8851be to Makefile and Kconfig (bsc#1227149).\n- wifi: rtw89: 8851b: add BT coexistence support function (bsc#1227149).\n- wifi: rtw89: 8851b: add DLE mem and HFC quota (bsc#1227149).\n- wifi: rtw89: 8851b: add MAC configurations to chip_info (bsc#1227149).\n- wifi: rtw89: 8851b: add NCTL post table (bsc#1227149).\n- wifi: rtw89: 8851b: add RF configurations (bsc#1227149).\n- wifi: rtw89: 8851b: add TX power related functions (bsc#1227149).\n- wifi: rtw89: 8851b: add basic power on function (bsc#1227149).\n- wifi: rtw89: 8851b: add set channel function (bsc#1227149).\n- wifi: rtw89: 8851b: add set_channel_rf() (bsc#1227149).\n- wifi: rtw89: 8851b: add support WoWLAN to 8851B (bsc#1227149).\n- wifi: rtw89: 8851b: add to parse efuse content (bsc#1227149).\n- wifi: rtw89: 8851b: add to read efuse version to recognize hardware version B (bsc#1227149).\n- wifi: rtw89: 8851b: configure CRASH_TRIGGER feature for 8851B (bsc#1227149).\n- wifi: rtw89: 8851b: configure GPIO according to RFE type (bsc#1227149).\n- wifi: rtw89: 8851b: configure to force 1 TX power value (bsc#1227149).\n- wifi: rtw89: 8851b: enable hw_scan support (bsc#1227149).\n- wifi: rtw89: 8851b: fill BB related capabilities to chip_info (bsc#1227149).\n- wifi: rtw89: 8851b: rfk: Fix spelling mistake KIP_RESOTRE -\u003e KIP_RESTORE (bsc#1227149).\n- wifi: rtw89: 8851b: rfk: add AACK (bsc#1227149).\n- wifi: rtw89: 8851b: rfk: add DACK (bsc#1227149).\n- wifi: rtw89: 8851b: rfk: add DPK (bsc#1227149).\n- wifi: rtw89: 8851b: rfk: add IQK (bsc#1227149).\n- wifi: rtw89: 8851b: rfk: add LCK track (bsc#1227149).\n- wifi: rtw89: 8851b: rfk: add RCK (bsc#1227149).\n- wifi: rtw89: 8851b: rfk: add RX DCK (bsc#1227149).\n- wifi: rtw89: 8851b: rfk: add TSSI (bsc#1227149).\n- wifi: rtw89: 8851b: rfk: update IQK to version 0x8 (bsc#1227149).\n- wifi: rtw89: 8851b: update RF radio A parameters to R28 (bsc#1227149).\n- wifi: rtw89: 8851b: update TX power tables to R28 (bsc#1227149).\n- wifi: rtw89: 8851b: update TX power tables to R34 (bsc#1227149).\n- wifi: rtw89: 8851b: update TX power tables to R37 (bsc#1227149).\n- wifi: rtw89: 8851be: add 8851BE PCI entry and fill PCI capabilities (bsc#1227149).\n- wifi: rtw89: 8852b: fix definition of KIP register number (git-fixes).\n- wifi: rtw89: 8852b: update TX power tables to R35 (bsc#1227149).\n- wifi: rtw89: 8852b: update TX power tables to R36 (bsc#1227149).\n- wifi: rtw89: 8852c: Fix TSSI causes transmit power inaccuracy (bsc#1227149).\n- wifi: rtw89: 8852c: Update bandedge parameters for better performance (bsc#1227149).\n- wifi: rtw89: 8852c: add quirk to set PCI BER for certain platforms (bsc#1227149).\n- wifi: rtw89: 8852c: declare to support two chanctx (bsc#1227149).\n- wifi: rtw89: 8852c: read RX gain offset from efuse for 6GHz channels (bsc#1227149).\n- wifi: rtw89: 8852c: update RF radio A/B parameters to R63 (bsc#1227149).\n- wifi: rtw89: 8852c: update TX power tables to R63 with 6 GHz power type (1 of 3) (bsc#1227149).\n- wifi: rtw89: 8852c: update TX power tables to R63 with 6 GHz power type (2 of 3) (bsc#1227149).\n- wifi: rtw89: 8852c: update TX power tables to R63 with 6 GHz power type (3 of 3) (bsc#1227149).\n- wifi: rtw89: 8852c: update TX power tables to R67 (bsc#1227149).\n- wifi: rtw89: 8922a: add 8922A basic chip info (bsc#1227149).\n- wifi: rtw89: 8922a: add BTG functions to assist BT coexistence to control TX/RX (bsc#1227149).\n- wifi: rtw89: 8922a: add NCTL pre-settings for WiFi 7 chips (bsc#1227149).\n- wifi: rtw89: 8922a: add RF read/write v2 (bsc#1227149).\n- wifi: rtw89: 8922a: add SER IMR tables (bsc#1227149).\n- wifi: rtw89: 8922a: add TX power related ops (bsc#1227149).\n- wifi: rtw89: 8922a: add chip_ops related to BB init (bsc#1227149).\n- wifi: rtw89: 8922a: add chip_ops to get thermal value (bsc#1227149).\n- wifi: rtw89: 8922a: add chip_ops::bb_preinit to enable BB before downloading firmware (bsc#1227149).\n- wifi: rtw89: 8922a: add chip_ops::cfg_txrx_path (bsc#1227149).\n- wifi: rtw89: 8922a: add chip_ops::rfk_hw_init (bsc#1227149).\n- wifi: rtw89: 8922a: add chip_ops::rfk_init_late to do initial RF calibrations later (bsc#1227149).\n- wifi: rtw89: 8922a: add chip_ops::{enable,disable}_bb_rf (bsc#1227149).\n- wifi: rtw89: 8922a: add coexistence helpers of SW grant (bsc#1227149).\n- wifi: rtw89: 8922a: add helper of set_channel (bsc#1227149).\n- wifi: rtw89: 8922a: add ieee80211_ops::hw_scan (bsc#1227149).\n- wifi: rtw89: 8922a: add more fields to beacon H2C command to support multi-links (bsc#1227149).\n- wifi: rtw89: 8922a: add power on/off functions (bsc#1227149).\n- wifi: rtw89: 8922a: add register definitions of H2C, C2H, page, RRSR and EDCCA (bsc#1227149).\n- wifi: rtw89: 8922a: add set_channel BB part (bsc#1227149).\n- wifi: rtw89: 8922a: add set_channel MAC part (bsc#1227149).\n- wifi: rtw89: 8922a: add set_channel RF part (bsc#1227149).\n- wifi: rtw89: 8922a: configure CRASH_TRIGGER FW feature (bsc#1227149).\n- wifi: rtw89: 8922a: correct register definition and merge IO for ctrl_nbtg_bt_tx() (bsc#1227149).\n- wifi: rtw89: 8922a: declare to support two chanctx (bsc#1227149).\n- wifi: rtw89: 8922a: dump MAC registers when SER occurs (bsc#1227149).\n- wifi: rtw89: 8922a: extend and add quota number (bsc#1227149).\n- wifi: rtw89: 8922a: hook handlers of TX/RX descriptors to chip_ops (bsc#1227149).\n- wifi: rtw89: 8922a: implement AP mode related reg for BE generation (bsc#1227149).\n- wifi: rtw89: 8922a: implement {stop,resume}_sch_tx and cfg_ppdu (bsc#1227149).\n- wifi: rtw89: 8922a: read efuse content from physical map (bsc#1227149).\n- wifi: rtw89: 8922a: read efuse content via efuse map struct from logic map (bsc#1227149).\n- wifi: rtw89: 8922a: rfk: implement chip_ops to call RF calibrations (bsc#1227149).\n- wifi: rtw89: 8922a: set RX gain along with set_channel operation (bsc#1227149).\n- wifi: rtw89: 8922a: set chip_ops FEM and GPIO to NULL (bsc#1227149).\n- wifi: rtw89: 8922a: set memory heap address for secure firmware (bsc#1227149).\n- wifi: rtw89: 8922a: update BA CAM number to 24 (bsc#1227149).\n- wifi: rtw89: 8922a: update the register used in DIG and the DIG flow (bsc#1227149).\n- wifi: rtw89: 8922ae: add 8922AE PCI entry and basic info (bsc#1227149).\n- wifi: rtw89: 8922ae: add v2 interrupt handlers for 8922AE (bsc#1227149).\n- wifi: rtw89: Add EHT rate mask as parameters of RA H2C command (bsc#1227149).\n- wifi: rtw89: Fix array index mistake in rtw89_sta_info_get_iter() (git-fixes).\n- wifi: rtw89: Fix clang -Wimplicit-fallthrough in rtw89_query_sar() (bsc#1227149).\n- wifi: rtw89: Introduce Time Averaged SAR (TAS) feature (bsc#1227149).\n- wifi: rtw89: Refine active scan behavior in 6 GHz (bsc#1227149).\n- wifi: rtw89: Set default CQM config if not present (bsc#1227149).\n- wifi: rtw89: TX power stuffs replace confusing naming of _max with _num (bsc#1227149).\n- wifi: rtw89: Update EHT PHY beamforming capability (bsc#1227149).\n- wifi: rtw89: acpi: process 6 GHz band policy from DSM (bsc#1227149).\n- wifi: rtw89: add C2H RA event V1 to support WiFi 7 chips (bsc#1227149).\n- wifi: rtw89: add C2H event handlers of RFK log and report (bsc#1227149).\n- wifi: rtw89: add CFO XTAL registers field to support 8851B (bsc#1227149).\n- wifi: rtw89: add DBCC H2C to notify firmware the status (bsc#1227149).\n- wifi: rtw89: add EHT capabilities for WiFi 7 chips (bsc#1227149).\n- wifi: rtw89: add EHT radiotap in monitor mode (bsc#1227149).\n- wifi: rtw89: add EVM and SNR statistics to debugfs (bsc#1227149).\n- wifi: rtw89: add EVM for antenna diversity (bsc#1227149).\n- wifi: rtw89: add H2C RA command V1 to support WiFi 7 chips (bsc#1227149).\n- wifi: rtw89: add H2C command to download beacon frame for WiFi 7 chips (bsc#1227149).\n- wifi: rtw89: add RSSI based antenna diversity (bsc#1227149).\n- wifi: rtw89: add RSSI statistics for the case of antenna diversity to debugfs (bsc#1227149).\n- wifi: rtw89: add XTAL SI for WiFi 7 chips (bsc#1227149).\n- wifi: rtw89: add chip_info::chip_gen to determine chip generation (bsc#1227149).\n- wifi: rtw89: add chip_info::txwd_info size to generalize TX WD submit (bsc#1227149).\n- wifi: rtw89: add chip_ops::h2c_ba_cam() to configure BA CAM (bsc#1227149).\n- wifi: rtw89: add chip_ops::query_rxdesc() and rxd_len as helpers to support newer chips (bsc#1227149).\n- wifi: rtw89: add chip_ops::update_beacon to abstract update beacon operation (bsc#1227149).\n- wifi: rtw89: add firmware H2C command of BA CAM V1 (bsc#1227149).\n- wifi: rtw89: add firmware parser for v1 format (bsc#1227149).\n- wifi: rtw89: add firmware suit for BB MCU 0/1 (bsc#1227149).\n- wifi: rtw89: add function prototype for coex request duration (bsc#1227149).\n- wifi: rtw89: add mac_gen pointer to access mac port registers (bsc#1227149).\n- wifi: rtw89: add mlo_dbcc_mode for WiFi 7 chips (bsc#1227149).\n- wifi: rtw89: add new H2C command to pause/sleep transmitting by MAC ID (bsc#1227149).\n- wifi: rtw89: add new H2C for PS mode in 802.11be chip (bsc#1227149).\n- wifi: rtw89: add reserved size as factor of DLE used size (bsc#1227149).\n- wifi: rtw89: add subband index of primary channel to struct rtw89_chan (bsc#1227149).\n- wifi: rtw89: add to display hardware rates v1 histogram in debugfs (bsc#1227149).\n- wifi: rtw89: add to fill TX descriptor for firmware command v2 (bsc#1227149).\n- wifi: rtw89: add to fill TX descriptor v2 (bsc#1227149).\n- wifi: rtw89: add to parse firmware elements of BB and RF tables (bsc#1227149).\n- wifi: rtw89: add to query RX descriptor format v2 (bsc#1227149).\n- wifi: rtw89: add tx_wake notify for 8851B (bsc#1227149).\n- wifi: rtw89: add wait/completion for abort scan (bsc#1227149).\n- wifi: rtw89: adjust init_he_cap() to add EHT cap into iftype_data (bsc#1227149).\n- wifi: rtw89: advertise missing extended scan feature (bsc#1227149).\n- wifi: rtw89: avoid stringop-overflow warning (bsc#1227149).\n- wifi: rtw89: call rtw89_chan_get() by vif chanctx if aware of vif (bsc#1227149).\n- wifi: rtw89: chan: MCC take reconfig into account (bsc#1227149).\n- wifi: rtw89: chan: add sub-entity swap function to cover replacing (bsc#1227149).\n- wifi: rtw89: chan: move handling from add/remove to assign/unassign for MLO (bsc#1227149).\n- wifi: rtw89: chan: support MCC on Wi-Fi 7 chips (bsc#1227149).\n- wifi: rtw89: chan: tweak bitmap recalc ahead before MLO (bsc#1227149).\n- wifi: rtw89: chan: tweak weight recalc ahead before MLO (bsc#1227149).\n- wifi: rtw89: change naming of BA CAM from V1 to V0_EXT (bsc#1227149).\n- wifi: rtw89: change qutoa to DBCC by default for WiFi 7 chips (bsc#1227149).\n- wifi: rtw89: change supported bandwidths of chip_info to bit mask (bsc#1227149).\n- wifi: rtw89: cleanup firmware elements parsing (bsc#1227149).\n- wifi: rtw89: cleanup private data structures (bsc#1227149).\n- wifi: rtw89: cleanup rtw89_iqk_info and related code (bsc#1227149).\n- wifi: rtw89: coex: Add Bluetooth RSSI level information (bsc#1227149).\n- wifi: rtw89: coex: Add Pre-AGC control to enhance Wi-Fi RX performance (bsc#1227149).\n- wifi: rtw89: coex: Add coexistence policy to decrease WiFi packet CRC-ERR (bsc#1227149).\n- wifi: rtw89: coex: Fix wrong Wi-Fi role info and FDDT parameter members (bsc#1227149).\n- wifi: rtw89: coex: Record down Wi-Fi initial mode information (bsc#1227149).\n- wifi: rtw89: coex: Reorder H2C command index to align with firmware (bsc#1227149).\n- wifi: rtw89: coex: Set Bluetooth scan low-priority when Wi-Fi link/scan (bsc#1227149).\n- wifi: rtw89: coex: Still show hardware grant signal info even Wi-Fi is PS (bsc#1227149).\n- wifi: rtw89: coex: To improve Wi-Fi performance while BT is idle (bsc#1227149).\n- wifi: rtw89: coex: Translate antenna configuration from ID to string (bsc#1227149).\n- wifi: rtw89: coex: Update BTG control related logic (bsc#1227149).\n- wifi: rtw89: coex: Update RF parameter control setting logic (bsc#1227149).\n- wifi: rtw89: coex: Update coexistence policy for Wi-Fi LPS (bsc#1227149).\n- wifi: rtw89: coex: When Bluetooth not available do not set power/gain (bsc#1227149).\n- wifi: rtw89: coex: add BTC ctrl_info version 7 and related logic (bsc#1227149).\n- wifi: rtw89: coex: add annotation __counted_by() for struct rtw89_btc_btf_set_slot_table (bsc#1227149).\n- wifi: rtw89: coex: add annotation __counted_by() to struct rtw89_btc_btf_set_mon_reg (bsc#1227149).\n- wifi: rtw89: coex: add init_info H2C command format version 7 (bsc#1227149).\n- wifi: rtw89: coex: add return value to ensure H2C command is success or not (bsc#1227149).\n- wifi: rtw89: coex: fix configuration for shared antenna for 8922A (bsc#1227149).\n- wifi: rtw89: coex: use struct assignment to replace memcpy() to append TDMA content (bsc#1227149).\n- wifi: rtw89: configure PPDU max user by chip (bsc#1227149).\n- wifi: rtw89: consider RX info for WiFi 7 chips (bsc#1227149).\n- wifi: rtw89: consolidate registers of mac port to struct (bsc#1227149).\n- wifi: rtw89: correct PHY register offset for PHY-1 (bsc#1227149).\n- wifi: rtw89: correct aSIFSTime for 6GHz band (stable-fixes).\n- wifi: rtw89: correct the DCFO tracking flow to improve CFO compensation (bsc#1227149).\n- wifi: rtw89: debug: add FW log component for scan (bsc#1227149).\n- wifi: rtw89: debug: add debugfs entry to disable dynamic mechanism (bsc#1227149).\n- wifi: rtw89: debug: add to check if debug mask is enabled (bsc#1227149).\n- wifi: rtw89: debug: remove wrapper of rtw89_debug() (bsc#1227149).\n- wifi: rtw89: debug: show txpwr table according to chip gen (bsc#1227149).\n- wifi: rtw89: debug: txpwr table access only valid page according to chip (bsc#1227149).\n- wifi: rtw89: debug: txpwr table supports Wi-Fi 7 chips (bsc#1227149).\n- wifi: rtw89: declare EXT NSS BW of VHT capability (bsc#1227149).\n- wifi: rtw89: declare MCC in interface combination (bsc#1227149).\n- wifi: rtw89: define hardware rate v1 for WiFi 7 chips (bsc#1227149).\n- wifi: rtw89: differentiate narrow_bw_ru_dis setting according to chip gen (bsc#1227149).\n- wifi: rtw89: disable RTS when broadcast/multicast (bsc#1227149).\n- wifi: rtw89: download firmware with five times retry (bsc#1227149).\n- wifi: rtw89: drop TIMING_BEACON_ONLY and sync beacon TSF by self (bsc#1227149).\n- wifi: rtw89: enlarge supported length of read_reg debugfs entry (bsc#1227149).\n- wifi: rtw89: extend PHY status parser to support WiFi 7 chips (bsc#1227149).\n- wifi: rtw89: fix HW scan not aborting properly (git-fixes).\n- wifi: rtw89: fix HW scan timeout due to TSF sync issue (bsc#1227149).\n- wifi: rtw89: fix a width vs precision bug (bsc#1227149).\n- wifi: rtw89: fix disabling concurrent mode TX hang issue (bsc#1227149).\n- wifi: rtw89: fix misbehavior of TX beacon in concurrent mode (bsc#1227149).\n- wifi: rtw89: fix not entering PS mode after AP stops (bsc#1227149).\n- wifi: rtw89: fix spelling typo of IQK debug messages (bsc#1227149).\n- wifi: rtw89: fix typo of rtw89_fw_h2c_mcc_macid_bitmap() (bsc#1227149).\n- wifi: rtw89: fw: add H2C command to reset CMAC table for WiFi 7 (bsc#1227149).\n- wifi: rtw89: fw: add H2C command to reset DMAC table for WiFi 7 (bsc#1227149).\n- wifi: rtw89: fw: add H2C command to update security CAM v2 (bsc#1227149).\n- wifi: rtw89: fw: add checking type for variant type of firmware (bsc#1227149).\n- wifi: rtw89: fw: add chip_ops to update CMAC table to associated station (bsc#1227149).\n- wifi: rtw89: fw: add definition of H2C command and C2H event for MRC series (bsc#1227149).\n- wifi: rtw89: fw: add version field to BB MCU firmware element (bsc#1227149).\n- wifi: rtw89: fw: consider checksum length of security data (bsc#1227149).\n- wifi: rtw89: fw: download firmware with key data for secure boot (bsc#1227149).\n- wifi: rtw89: fw: extend JOIN H2C command to support WiFi 7 chips (bsc#1227149).\n- wifi: rtw89: fw: extend program counter dump for Wi-Fi 7 chip (bsc#1227149).\n- wifi: rtw89: fw: fill CMAC table to associated station for WiFi 7 chips (bsc#1227149).\n- wifi: rtw89: fw: generalize download firmware flow by mac_gen pointers (bsc#1227149).\n- wifi: rtw89: fw: implement MRC H2C command functions (bsc#1227149).\n- wifi: rtw89: fw: implement supported functions of download firmware for WiFi 7 chips (bsc#1227149).\n- wifi: rtw89: fw: load TX power track tables from fw_element (bsc#1227149).\n- wifi: rtw89: fw: move polling function of firmware path ready to an individual function (bsc#1227149).\n- wifi: rtw89: fw: parse secure section from firmware file (bsc#1227149).\n- wifi: rtw89: fw: propagate an argument include_bb for BB MCU firmware (bsc#1227149).\n- wifi: rtw89: fw: read firmware secure information from efuse (bsc#1227149).\n- wifi: rtw89: fw: refine download flow to support variant firmware suits (bsc#1227149).\n- wifi: rtw89: fw: scan offload prohibit all 6 GHz channel if no 6 GHz sband (bsc#1227149).\n- wifi: rtw89: fw: update TX AMPDU parameter to CMAC table (bsc#1227149).\n- wifi: rtw89: fw: use struct to fill BA CAM H2C commands (bsc#1227149).\n- wifi: rtw89: fw: use struct to fill JOIN H2C command (bsc#1227149).\n- wifi: rtw89: get data rate mode/NSS/MCS v1 from RX descriptor (bsc#1227149).\n- wifi: rtw89: indicate TX power by rate table inside RFE parameter (bsc#1227149).\n- wifi: rtw89: indicate TX shape table inside RFE parameter (bsc#1227149).\n- wifi: rtw89: initialize antenna for antenna diversity (bsc#1227149).\n- wifi: rtw89: initialize multi-channel handling (bsc#1227149).\n- wifi: rtw89: introduce infrastructure of firmware elements (bsc#1227149).\n- wifi: rtw89: introduce realtek ACPI DSM method (bsc#1227149).\n- wifi: rtw89: introduce v1 format of firmware header (bsc#1227149).\n- wifi: rtw89: load BB parameters to PHY-1 (bsc#1227149).\n- wifi: rtw89: load RFK log format string from firmware file (bsc#1227149).\n- wifi: rtw89: load TX power by rate when RFE parms setup (bsc#1227149).\n- wifi: rtw89: load TX power related tables from FW elements (bsc#1227149).\n- wifi: rtw89: mac: Fix spelling mistakes \u0027notfify\u0027 -\u003e \u0027notify\u0027 (bsc#1227149).\n- wifi: rtw89: mac: add coexistence helpers {cfg/get}_plt (bsc#1227149).\n- wifi: rtw89: mac: add feature_init to initialize BA CAM V1 (bsc#1227149).\n- wifi: rtw89: mac: add flags to check if CMAC and DMAC are enabled (bsc#1227149).\n- wifi: rtw89: mac: add mac_gen_def::band1_offset to map MAC band1 register address (bsc#1227149).\n- wifi: rtw89: mac: add registers of MU-EDCA parameters for WiFi 7 chips (bsc#1227149).\n- wifi: rtw89: mac: add suffix _ax to MAC functions (bsc#1227149).\n- wifi: rtw89: mac: add sys_init and filter option for WiFi 7 chips (bsc#1227149).\n- wifi: rtw89: mac: add to access efuse for WiFi 7 chips (bsc#1227149).\n- wifi: rtw89: mac: add to get DLE reserved quota (bsc#1227149).\n- wifi: rtw89: mac: check queue empty according to chip gen (bsc#1227149).\n- wifi: rtw89: mac: correct MUEDCA setting for MAC-1 (bsc#1227149).\n- wifi: rtw89: mac: define internal memory address for WiFi 7 chip (bsc#1227149).\n- wifi: rtw89: mac: define register address of rx_filter to generalize code (bsc#1227149).\n- wifi: rtw89: mac: do bf_monitor only if WiFi 6 chips (bsc#1227149).\n- wifi: rtw89: mac: functions to configure hardware engine and quota for WiFi 7 chips (bsc#1227149).\n- wifi: rtw89: mac: generalize code to indirectly access WiFi internal memory (bsc#1227149).\n- wifi: rtw89: mac: generalize register of MU-EDCA switch according to chip gen (bsc#1227149).\n- wifi: rtw89: mac: get TX power control register according to chip gen (bsc#1227149).\n- wifi: rtw89: mac: handle C2H receive/done ACK in interrupt context (bsc#1227149).\n- wifi: rtw89: mac: implement MRC C2H event handling (bsc#1227149).\n- wifi: rtw89: mac: implement to configure TX/RX engines for WiFi 7 chips (bsc#1227149).\n- wifi: rtw89: mac: move code related to hardware engine to individual functions (bsc#1227149).\n- wifi: rtw89: mac: refine SER setting during WiFi CPU power on (bsc#1227149).\n- wifi: rtw89: mac: reset PHY-1 hardware when going to enable/disable (bsc#1227149).\n- wifi: rtw89: mac: return held quota of DLE when changing MAC-1 (bsc#1227149).\n- wifi: rtw89: mac: set bf_assoc capabilities according to chip gen (bsc#1227149).\n- wifi: rtw89: mac: set bfee_ctrl() according to chip gen (bsc#1227149).\n- wifi: rtw89: mac: update RTS threshold according to chip gen (bsc#1227149).\n- wifi: rtw89: mac: use mac_gen pointer to access about efuse (bsc#1227149).\n- wifi: rtw89: mac: use pointer to access functions of hardware engine and quota (bsc#1227149).\n- wifi: rtw89: mcc: consider and determine BT duration (bsc#1227149).\n- wifi: rtw89: mcc: deal with BT slot change (bsc#1227149).\n- wifi: rtw89: mcc: deal with P2P PS change (bsc#1227149).\n- wifi: rtw89: mcc: deal with beacon NoA if GO exists (bsc#1227149).\n- wifi: rtw89: mcc: decide pattern and calculate parameters (bsc#1227149).\n- wifi: rtw89: mcc: fill fundamental configurations (bsc#1227149).\n- wifi: rtw89: mcc: fix NoA start time when GO is auxiliary (bsc#1227149).\n- wifi: rtw89: mcc: initialize start flow (bsc#1227149).\n- wifi: rtw89: mcc: track beacon offset and update when needed (bsc#1227149).\n- wifi: rtw89: mcc: trigger FW to start/stop MCC (bsc#1227149).\n- wifi: rtw89: mcc: update role bitmap when changed (bsc#1227149).\n- wifi: rtw89: modify the register setting and the flow of CFO tracking (bsc#1227149).\n- wifi: rtw89: move software DCFO compensation setting to proper position (bsc#1227149).\n- wifi: rtw89: only reset BB/RF for existing WiFi 6 chips while starting up (bsc#1227149).\n- wifi: rtw89: packet offload wait for FW response (bsc#1227149).\n- wifi: rtw89: parse EHT information from RX descriptor and PPDU status packet (bsc#1227149).\n- wifi: rtw89: parse TX EHT rate selected by firmware from RA C2H report (bsc#1227149).\n- wifi: rtw89: parse and print out RFK log from C2H events (bsc#1227149).\n- wifi: rtw89: pause/proceed MCC for ROC and HW scan (bsc#1227149).\n- wifi: rtw89: pci: add LTR v2 for WiFi 7 chip (bsc#1227149).\n- wifi: rtw89: pci: add PCI generation information to pci_info for each chip (bsc#1227149).\n- wifi: rtw89: pci: add new RX ring design to determine full RX ring efficiently (bsc#1227149).\n- wifi: rtw89: pci: add pre_deinit to be called after probe complete (bsc#1227149).\n- wifi: rtw89: pci: correct interrupt mitigation register for 8852CE (bsc#1227149).\n- wifi: rtw89: pci: define PCI ring address for WiFi 7 chips (bsc#1227149).\n- wifi: rtw89: pci: fix interrupt enable mask for HALT C2H of RTL8851B (bsc#1227149).\n- wifi: rtw89: pci: generalize code of PCI control DMA IO for WiFi 7 (bsc#1227149).\n- wifi: rtw89: pci: generalize interrupt status bits of interrupt handlers (bsc#1227149).\n- wifi: rtw89: pci: implement PCI CLK/ASPM/L1SS for WiFi 7 chips (bsc#1227149).\n- wifi: rtw89: pci: implement PCI mac_post_init for WiFi 7 chips (bsc#1227149).\n- wifi: rtw89: pci: implement PCI mac_pre_init for WiFi 7 chips (bsc#1227149).\n- wifi: rtw89: pci: interrupt v2 refine IMR for SER (bsc#1227149).\n- wifi: rtw89: pci: reset BDRAM according to chip gen (bsc#1227149).\n- wifi: rtw89: pci: stop/start DMA for level 1 recovery according to chip gen (bsc#1227149).\n- wifi: rtw89: pci: update SER timer unit and timeout time (bsc#1227149).\n- wifi: rtw89: pci: update interrupt mitigation register for 8922AE (bsc#1227149).\n- wifi: rtw89: pci: use DBI function for 8852AE/8852BE/8851BE (bsc#1227149).\n- wifi: rtw89: pci: use gen_def pointer to configure mac_{pre,post}_init and clear PCI ring index (bsc#1227149).\n- wifi: rtw89: pci: validate RX tag for RXQ and RPQ (bsc#1227149).\n- wifi: rtw89: phy: add BB wrapper of TX power for WiFi 7 chips (bsc#1227149).\n- wifi: rtw89: phy: add parser to support RX gain dynamic setting flow (bsc#1227149).\n- wifi: rtw89: phy: add phy_gen_def::cr_base to support WiFi 7 chips (bsc#1227149).\n- wifi: rtw89: phy: change naming related BT coexistence functions (bsc#1227149).\n- wifi: rtw89: phy: dynamically adjust EDCCA threshold (bsc#1227149).\n- wifi: rtw89: phy: extend TX power common stuffs for Wi-Fi 7 chips (bsc#1227149).\n- wifi: rtw89: phy: generalize valid bit of BSS color (bsc#1227149).\n- wifi: rtw89: phy: ignore special data from BB parameter file (bsc#1227149).\n- wifi: rtw89: phy: modify register setting of ENV_MNTR, PHYSTS and DIG (bsc#1227149).\n- wifi: rtw89: phy: move bb_gain_info used by WiFi 6 chips to union (bsc#1227149).\n- wifi: rtw89: phy: print out RFK log with formatted string (bsc#1227149).\n- wifi: rtw89: phy: rate pattern handles HW rate by chip gen (bsc#1227149).\n- wifi: rtw89: phy: refine helpers used for raw TX power (bsc#1227149).\n- wifi: rtw89: phy: set TX power RU limit according to chip gen (bsc#1227149).\n- wifi: rtw89: phy: set TX power by rate according to chip gen (bsc#1227149).\n- wifi: rtw89: phy: set TX power limit according to chip gen (bsc#1227149).\n- wifi: rtw89: phy: set TX power offset according to chip gen (bsc#1227149).\n- wifi: rtw89: phy: set channel_info for WiFi 7 chips (bsc#1227149).\n- wifi: rtw89: prepare scan leaf functions for wifi 7 ICs (bsc#1227149).\n- wifi: rtw89: process regulatory for 6 GHz power type (bsc#1227149).\n- wifi: rtw89: provide functions to configure NoA for beacon update (bsc#1227149).\n- wifi: rtw89: recognize log format from firmware file (bsc#1227149).\n- wifi: rtw89: reference quota mode when setting Tx power (bsc#1227149).\n- wifi: rtw89: refine H2C command that pause transmitting by MAC ID (bsc#1227149).\n- wifi: rtw89: refine add_chan H2C command to encode_bits (bsc#1227149).\n- wifi: rtw89: refine bandwidth 160MHz uplink OFDMA performance (bsc#1227149).\n- wifi: rtw89: refine clearing supported bands to check 2/5 GHz first (bsc#1227149).\n- wifi: rtw89: refine element naming used by queue empty check (bsc#1227149).\n- wifi: rtw89: refine hardware scan C2H events (bsc#1227149).\n- wifi: rtw89: refine packet offload delete flow of 6 GHz probe (bsc#1227149).\n- wifi: rtw89: refine packet offload handling under SER (bsc#1227149).\n- wifi: rtw89: refine remain on channel flow to improve P2P connection (bsc#1227149).\n- wifi: rtw89: refine rtw89_correct_cck_chan() by rtw89_hw_to_nl80211_band() (bsc#1227149).\n- wifi: rtw89: refine uplink trigger based control mechanism (bsc#1227149).\n- wifi: rtw89: regd: configure Thailand in regulation type (bsc#1227149).\n- wifi: rtw89: regd: handle policy of 6 GHz according to BIOS (bsc#1227149).\n- wifi: rtw89: regd: judge 6 GHz according to chip and BIOS (bsc#1227149).\n- wifi: rtw89: regd: judge UNII-4 according to BIOS and chip (bsc#1227149).\n- wifi: rtw89: regd: update regulatory map to R64-R40 (bsc#1227149).\n- wifi: rtw89: regd: update regulatory map to R64-R43 (bsc#1227149).\n- wifi: rtw89: regd: update regulatory map to R65-R44 (bsc#1227149).\n- wifi: rtw89: release bit in rtw89_fw_h2c_del_pkt_offload() (bsc#1227149).\n- wifi: rtw89: return failure if needed firmware elements are not recognized (bsc#1227149).\n- wifi: rtw89: rfk: add H2C command to trigger DACK (bsc#1227149).\n- wifi: rtw89: rfk: add H2C command to trigger DPK (bsc#1227149).\n- wifi: rtw89: rfk: add H2C command to trigger IQK (bsc#1227149).\n- wifi: rtw89: rfk: add H2C command to trigger RX DCK (bsc#1227149).\n- wifi: rtw89: rfk: add H2C command to trigger TSSI (bsc#1227149).\n- wifi: rtw89: rfk: add H2C command to trigger TXGAPK (bsc#1227149).\n- wifi: rtw89: rfk: add a completion to wait RF calibration report from C2H event (bsc#1227149).\n- wifi: rtw89: rfk: disable driver tracking during MCC (bsc#1227149).\n- wifi: rtw89: rfk: send channel information to firmware for RF calibrations (bsc#1227149).\n- wifi: rtw89: sar: let caller decide the center frequency to query (bsc#1227149).\n- wifi: rtw89: scan offload wait for FW done ACK (bsc#1227149).\n- wifi: rtw89: ser: L1 add pre-M0 and post-M0 states (bsc#1227149).\n- wifi: rtw89: ser: reset total_sta_assoc and tdls_peer when L2 (bsc#1227149).\n- wifi: rtw89: set TX power without precondition during setting channel (bsc#1227149).\n- wifi: rtw89: set capability of TX antenna diversity (bsc#1227149).\n- wifi: rtw89: set entry size of address CAM to H2C field by chip (bsc#1227149).\n- wifi: rtw89: show EHT rate in debugfs (bsc#1227149).\n- wifi: rtw89: support U-NII-4 channels on 5GHz band (bsc#1227149).\n- wifi: rtw89: support firmware log with formatted text (bsc#1227149).\n- wifi: rtw89: suppress the log for specific SER called CMDPSR_FRZTO (bsc#1227149).\n- wifi: rtw89: tweak H2C TX waiting function for SER (bsc#1227149).\n- wifi: rtw89: update DMA function with different generation (bsc#1227149).\n- wifi: rtw89: update ps_state register for chips with different generation (bsc#1227149).\n- wifi: rtw89: update scan C2H messages for wifi 7 IC (bsc#1227149).\n- wifi: rtw89: update suspend/resume for different generation (bsc#1227149).\n- wifi: rtw89: use PLCP information to match BSS_COLOR and AID (bsc#1227149).\n- wifi: rtw89: use chip_info::small_fifo_size to choose debug_mask (bsc#1227149).\n- wifi: rtw89: use flexible array member in rtw89_btc_btf_tlv (bsc#1227149).\n- wifi: rtw89: use struct and le32_get_bits to access RX info (bsc#1227149).\n- wifi: rtw89: use struct and le32_get_bits() to access RX descriptor (bsc#1227149).\n- wifi: rtw89: use struct and le32_get_bits() to access received PHY status IEs (bsc#1227149).\n- wifi: rtw89: use struct rtw89_phy_sts_ie0 instead of macro to access PHY IE0 status (bsc#1227149).\n- wifi: rtw89: use struct to access RA report (bsc#1227149).\n- wifi: rtw89: use struct to access firmware C2H event header (bsc#1227149).\n- wifi: rtw89: use struct to access register-based H2C/C2H (bsc#1227149).\n- wifi: rtw89: use struct to fill H2C command to download beacon frame (bsc#1227149).\n- wifi: rtw89: use struct to parse firmware header (bsc#1227149).\n- wifi: rtw89: use struct to set RA H2C command (bsc#1227149).\n- wifi: rtw89: wow: move release offload packet earlier for WoWLAN mode (bsc#1227149).\n- wifi: rtw89: wow: refine WoWLAN flows of HCI interrupts and low power mode (bsc#1227149).\n- wifi: rtw89: wow: set security engine options for 802.11ax chips only (bsc#1227149).\n- wifi: rtw89: wow: update WoWLAN reason register for different chips (bsc#1227149).\n- wifi: rtw89: wow: update WoWLAN status register for different generation (bsc#1227149).\n- wifi: rtw89: wow: update config mac function with different generation (bsc#1227149).\n- wifi: ti: wlcore: sdio: Drop unused include (bsc#1227149).\n- wifi: virt_wifi: avoid reporting connection success with wrong SSID (git-fixes).\n- wifi: virt_wifi: do not use strlen() in const context (git-fixes).\n- wifi: wcn36xx: Annotate struct wcn36xx_hal_ind_msg with __counted_by (bsc#1227149).\n- wifi: wcn36xx: Convert to platform remove callback returning void (bsc#1227149).\n- wifi: wcn36xx: remove unnecessary (void*) conversions (bsc#1227149).\n- wifi: wext: avoid extra calls to strlen() in ieee80211_bss() (bsc#1227149).\n- wifi: wfx: Use devm_kmemdup to replace devm_kmalloc + memcpy (bsc#1227149).\n- wifi: wfx: allow to send frames during ROC (bsc#1227149).\n- wifi: wfx: fix power_save setting when AP is stopped (bsc#1227149).\n- wifi: wfx: implement wfx_remain_on_channel() (bsc#1227149).\n- wifi: wfx: introduce hif_scan_uniq() (bsc#1227149).\n- wifi: wfx: move wfx_skb_*() out of the header file (bsc#1227149).\n- wifi: wfx: relocate wfx_rate_mask_to_hw() (bsc#1227149).\n- wifi: wfx: scan_lock is global to the device (bsc#1227149).\n- wifi: wfx: simplify exclusion between scan and Rx filters (bsc#1227149).\n- wifi: wil6210: fw: Replace zero-length arrays with DECLARE_FLEX_ARRAY() helper (bsc#1227149).\n- wifi: wil6210: wmi: Replace zero-length array with DECLARE_FLEX_ARRAY() helper (bsc#1227149).\n- wifi: wilc1000: Increase ASSOC response buffer (bsc#1227149).\n- wifi: wilc1000: Remove unused declarations (bsc#1227149).\n- wifi: wilc1000: add SPI commands retry mechanism (bsc#1227149).\n- wifi: wilc1000: add back-off algorithm to balance tx queue packets (bsc#1227149).\n- wifi: wilc1000: add missing read critical sections around vif list traversal (bsc#1227149).\n- wifi: wilc1000: always release SDIO host in wilc_sdio_cmd53() (bsc#1227149).\n- wifi: wilc1000: cleanup struct wilc_conn_info (bsc#1227149).\n- wifi: wilc1000: correct CRC7 calculation (bsc#1227149).\n- wifi: wilc1000: fix declarations ordering (bsc#1227149).\n- wifi: wilc1000: fix driver_handler when committing initial configuration (bsc#1227149).\n- wifi: wilc1000: fix ies_len type in connect path (git-fixes).\n- wifi: wilc1000: fix incorrect power down sequence (bsc#1227149).\n- wifi: wilc1000: remove AKM suite be32 conversion for external auth request (bsc#1227149).\n- wifi: wilc1000: remove setting msg.spi (bsc#1227149).\n- wifi: wilc1000: remove use of has_thrpt_enh3 flag (bsc#1227149).\n- wifi: wilc1000: set preamble size to auto as default in wilc_init_fw_config() (bsc#1227149).\n- wifi: wilc1000: simplify remain on channel support (bsc#1227149).\n- wifi: wilc1000: simplify wilc_scan() (bsc#1227149).\n- wifi: wilc1000: split deeply nested RCU list traversal in dedicated helper (bsc#1227149).\n- wifi: wilc1000: use SRCU instead of RCU for vif list traversal (bsc#1227149).\n- wifi: wilc1000: validate chip id during bus probe (bsc#1227149).\n- wifi: wl1251: replace deprecated strncpy with strscpy (bsc#1227149).\n- wifi: wl18xx: replace deprecated strncpy with strscpy (bsc#1227149).\n- wifi: wlcore: boot: replace deprecated strncpy with strscpy (bsc#1227149).\n- wifi: wlcore: main: replace deprecated strncpy with strscpy (bsc#1227149).\n- wifi: wlcore: sdio: Rate limit wl12xx_sdio_raw_{read,write}() failures warns (bsc#1227149).\n- wifi: wlcore: sdio: Use module_sdio_driver macro to simplify the code (bsc#1227149).\n- wifi: zd1211rw: fix typo \u0027tranmits\u0027 (bsc#1227149).\n- wifi: zd1211rw: remove __nocast from zd_addr_t (bsc#1227149).\n- wifi: zd1211rw: silence sparse warnings (bsc#1227149).\n- wlcore: spi: Remove redundant of_match_ptr() (bsc#1227149).\n- work around gcc bugs with \u0027asm goto\u0027 with outputs (git-fixes).\n- x86/amd_nb: Check for invalid SMN reads (git-fixes).\n- x86/apic: Force native_apic_mem_read() to use the MOV instruction (git-fixes).\n- x86/asm: Fix build of UML with KASAN (git-fixes).\n- x86/asm: Remove the __iomem annotation of movdir64b()\u0027s dst argument (git-fixes).\n- x86/bhi: Avoid warning in #DB handler due to BHI mitigation :(git-fixes).\n- x86/boot: Ignore NMIs during very early boot (git-fixes).\n- x86/cpu: Provide default cache line size if not enumerated (git-fixes).\n- x86/csum: Fix clang -Wuninitialized in csum_partial() (git-fixes).\n- x86/csum: Improve performance of `csum_partial` (git-fixes).\n- x86/csum: Remove unnecessary odd handling (git-fixes).\n- x86/csum: clean up `csum_partial\u0027 further (git-fixes).\n- x86/fpu: Fix AMD X86_BUG_FXSAVE_LEAK fixup (git-fixes).\n- x86/head/64: Move the __head definition to \u0026lt;asm/init.h\u003e (git-fixes).\n- x86/insn: Add VEX versions of VPDPBUSD, VPDPBUSDS, VPDPWSSD and VPDPWSSDS (git-fixes).\n- x86/insn: Fix PUSH instruction in x86 instruction decoder opcode map (git-fixes).\n- x86/kconfig: Add as-instr64 macro to properly evaluate AS_WRUSS (git-fixes).\n- x86/kexec: Fix bug with call depth tracking (git-fixes).\n- x86/mce: Dynamically size space for machine check records (bsc#1222241).\n- x86/mce: Mark fatal MCE\u0027s page as poison to avoid panic in the kdump kernel (git-fixes).\n- x86/nmi: Drop unused declaration of proc_nmi_enabled() (git-fixes).\n- x86/resctrl: Read supported bandwidth sources from CPUID (git-fixes).\n- x86/resctrl: Remove redundant variable in mbm_config_write_domain() (git-fixes).\n- x86/sev: Fix position dependent variable references in startup code (git-fixes).\n- x86/shstk: Make return uprobe work with shadow stack (git-fixes).\n- x86/speculation, objtool: Use absolute relocations for annotations (git-fixes).\n- x86/tdx: Preserve shared bit on mprotect() (git-fixes).\n- x86/tsc: Trust initial offset in architectural TSC-adjust MSRs (bsc#1222015 bsc#1226962).\n- x86/uaccess: Fix missed zeroing of ia32 u64 get_user() range checking (git-fixes).\n- x86: Stop using weak symbols for __iowrite32_copy() (bsc#1226502)\n- xen/x86: add extra pages to unpopulated-alloc if available (git-fixes).\n- xfs: Add cond_resched to block unmap range and reflink remap path (bsc#1228211).\n- xfs: use roundup_pow_of_two instead of ffs during xlog_find_tail (git-fixes).\n- xhci: Apply broken streams quirk to Etron EJ188 xHCI host (stable-fixes).\n- xhci: Apply reset resume quirk to Etron EJ188 xHCI host (stable-fixes).\n- xhci: Handle TD clearing for multiple streams case (git-fixes).\n- xhci: Set correct transferred length for cancelled bulk transfers (stable-fixes).\n- xhci: always resume roothubs if xHC was reset during resume (stable-fixes).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-2896,SUSE-SLE-Module-Public-Cloud-15-SP6-2024-2896,openSUSE-SLE-15.6-2024-2896",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_2896-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:2896-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20242896-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:2896-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-August/019185.html"
},
{
"category": "self",
"summary": "SUSE Bug 1186716",
"url": "https://bugzilla.suse.com/1186716"
},
{
"category": "self",
"summary": "SUSE Bug 1194869",
"url": "https://bugzilla.suse.com/1194869"
},
{
"category": "self",
"summary": "SUSE Bug 1195775",
"url": "https://bugzilla.suse.com/1195775"
},
{
"category": "self",
"summary": "SUSE Bug 1204562",
"url": "https://bugzilla.suse.com/1204562"
},
{
"category": "self",
"summary": "SUSE Bug 1209834",
"url": "https://bugzilla.suse.com/1209834"
},
{
"category": "self",
"summary": "SUSE Bug 1215199",
"url": "https://bugzilla.suse.com/1215199"
},
{
"category": "self",
"summary": "SUSE Bug 1215587",
"url": "https://bugzilla.suse.com/1215587"
},
{
"category": "self",
"summary": "SUSE Bug 1217481",
"url": "https://bugzilla.suse.com/1217481"
},
{
"category": "self",
"summary": "SUSE Bug 1217912",
"url": "https://bugzilla.suse.com/1217912"
},
{
"category": "self",
"summary": "SUSE Bug 1218442",
"url": "https://bugzilla.suse.com/1218442"
},
{
"category": "self",
"summary": "SUSE Bug 1218730",
"url": "https://bugzilla.suse.com/1218730"
},
{
"category": "self",
"summary": "SUSE Bug 1218820",
"url": "https://bugzilla.suse.com/1218820"
},
{
"category": "self",
"summary": "SUSE Bug 1219224",
"url": "https://bugzilla.suse.com/1219224"
},
{
"category": "self",
"summary": "SUSE Bug 1219478",
"url": "https://bugzilla.suse.com/1219478"
},
{
"category": "self",
"summary": "SUSE Bug 1219596",
"url": "https://bugzilla.suse.com/1219596"
},
{
"category": "self",
"summary": "SUSE Bug 1219633",
"url": "https://bugzilla.suse.com/1219633"
},
{
"category": "self",
"summary": "SUSE Bug 1219832",
"url": "https://bugzilla.suse.com/1219832"
},
{
"category": "self",
"summary": "SUSE Bug 1219847",
"url": "https://bugzilla.suse.com/1219847"
},
{
"category": "self",
"summary": "SUSE Bug 1219953",
"url": "https://bugzilla.suse.com/1219953"
},
{
"category": "self",
"summary": "SUSE Bug 1220138",
"url": "https://bugzilla.suse.com/1220138"
},
{
"category": "self",
"summary": "SUSE Bug 1220427",
"url": "https://bugzilla.suse.com/1220427"
},
{
"category": "self",
"summary": "SUSE Bug 1220430",
"url": "https://bugzilla.suse.com/1220430"
},
{
"category": "self",
"summary": "SUSE Bug 1220942",
"url": "https://bugzilla.suse.com/1220942"
},
{
"category": "self",
"summary": "SUSE Bug 1221057",
"url": "https://bugzilla.suse.com/1221057"
},
{
"category": "self",
"summary": "SUSE Bug 1221086",
"url": "https://bugzilla.suse.com/1221086"
},
{
"category": "self",
"summary": "SUSE Bug 1221647",
"url": "https://bugzilla.suse.com/1221647"
},
{
"category": "self",
"summary": "SUSE Bug 1221654",
"url": "https://bugzilla.suse.com/1221654"
},
{
"category": "self",
"summary": "SUSE Bug 1221656",
"url": "https://bugzilla.suse.com/1221656"
},
{
"category": "self",
"summary": "SUSE Bug 1221659",
"url": "https://bugzilla.suse.com/1221659"
},
{
"category": "self",
"summary": "SUSE Bug 1221777",
"url": "https://bugzilla.suse.com/1221777"
},
{
"category": "self",
"summary": "SUSE Bug 1221958",
"url": "https://bugzilla.suse.com/1221958"
},
{
"category": "self",
"summary": "SUSE Bug 1222011",
"url": "https://bugzilla.suse.com/1222011"
},
{
"category": "self",
"summary": "SUSE Bug 1222015",
"url": "https://bugzilla.suse.com/1222015"
},
{
"category": "self",
"summary": "SUSE Bug 1222080",
"url": "https://bugzilla.suse.com/1222080"
},
{
"category": "self",
"summary": "SUSE Bug 1222241",
"url": "https://bugzilla.suse.com/1222241"
},
{
"category": "self",
"summary": "SUSE Bug 1222326",
"url": "https://bugzilla.suse.com/1222326"
},
{
"category": "self",
"summary": "SUSE Bug 1222328",
"url": "https://bugzilla.suse.com/1222328"
},
{
"category": "self",
"summary": "SUSE Bug 1222380",
"url": "https://bugzilla.suse.com/1222380"
},
{
"category": "self",
"summary": "SUSE Bug 1222438",
"url": "https://bugzilla.suse.com/1222438"
},
{
"category": "self",
"summary": "SUSE Bug 1222463",
"url": "https://bugzilla.suse.com/1222463"
},
{
"category": "self",
"summary": "SUSE Bug 1222588",
"url": "https://bugzilla.suse.com/1222588"
},
{
"category": "self",
"summary": "SUSE Bug 1222617",
"url": "https://bugzilla.suse.com/1222617"
},
{
"category": "self",
"summary": "SUSE Bug 1222619",
"url": "https://bugzilla.suse.com/1222619"
},
{
"category": "self",
"summary": "SUSE Bug 1222768",
"url": "https://bugzilla.suse.com/1222768"
},
{
"category": "self",
"summary": "SUSE Bug 1222775",
"url": "https://bugzilla.suse.com/1222775"
},
{
"category": "self",
"summary": "SUSE Bug 1222779",
"url": "https://bugzilla.suse.com/1222779"
},
{
"category": "self",
"summary": "SUSE Bug 1222809",
"url": "https://bugzilla.suse.com/1222809"
},
{
"category": "self",
"summary": "SUSE Bug 1222810",
"url": "https://bugzilla.suse.com/1222810"
},
{
"category": "self",
"summary": "SUSE Bug 1222893",
"url": "https://bugzilla.suse.com/1222893"
},
{
"category": "self",
"summary": "SUSE Bug 1223010",
"url": "https://bugzilla.suse.com/1223010"
},
{
"category": "self",
"summary": "SUSE Bug 1223018",
"url": "https://bugzilla.suse.com/1223018"
},
{
"category": "self",
"summary": "SUSE Bug 1223021",
"url": "https://bugzilla.suse.com/1223021"
},
{
"category": "self",
"summary": "SUSE Bug 1223265",
"url": "https://bugzilla.suse.com/1223265"
},
{
"category": "self",
"summary": "SUSE Bug 1223570",
"url": "https://bugzilla.suse.com/1223570"
},
{
"category": "self",
"summary": "SUSE Bug 1223731",
"url": "https://bugzilla.suse.com/1223731"
},
{
"category": "self",
"summary": "SUSE Bug 1223740",
"url": "https://bugzilla.suse.com/1223740"
},
{
"category": "self",
"summary": "SUSE Bug 1223778",
"url": "https://bugzilla.suse.com/1223778"
},
{
"category": "self",
"summary": "SUSE Bug 1223804",
"url": "https://bugzilla.suse.com/1223804"
},
{
"category": "self",
"summary": "SUSE Bug 1223806",
"url": "https://bugzilla.suse.com/1223806"
},
{
"category": "self",
"summary": "SUSE Bug 1223807",
"url": "https://bugzilla.suse.com/1223807"
},
{
"category": "self",
"summary": "SUSE Bug 1223813",
"url": "https://bugzilla.suse.com/1223813"
},
{
"category": "self",
"summary": "SUSE Bug 1223815",
"url": "https://bugzilla.suse.com/1223815"
},
{
"category": "self",
"summary": "SUSE Bug 1223836",
"url": "https://bugzilla.suse.com/1223836"
},
{
"category": "self",
"summary": "SUSE Bug 1223863",
"url": "https://bugzilla.suse.com/1223863"
},
{
"category": "self",
"summary": "SUSE Bug 1224049",
"url": "https://bugzilla.suse.com/1224049"
},
{
"category": "self",
"summary": "SUSE Bug 1224187",
"url": "https://bugzilla.suse.com/1224187"
},
{
"category": "self",
"summary": "SUSE Bug 1224414",
"url": "https://bugzilla.suse.com/1224414"
},
{
"category": "self",
"summary": "SUSE Bug 1224422",
"url": "https://bugzilla.suse.com/1224422"
},
{
"category": "self",
"summary": "SUSE Bug 1224439",
"url": "https://bugzilla.suse.com/1224439"
},
{
"category": "self",
"summary": "SUSE Bug 1224490",
"url": "https://bugzilla.suse.com/1224490"
},
{
"category": "self",
"summary": "SUSE Bug 1224497",
"url": "https://bugzilla.suse.com/1224497"
},
{
"category": "self",
"summary": "SUSE Bug 1224498",
"url": "https://bugzilla.suse.com/1224498"
},
{
"category": "self",
"summary": "SUSE Bug 1224499",
"url": "https://bugzilla.suse.com/1224499"
},
{
"category": "self",
"summary": "SUSE Bug 1224512",
"url": "https://bugzilla.suse.com/1224512"
},
{
"category": "self",
"summary": "SUSE Bug 1224515",
"url": "https://bugzilla.suse.com/1224515"
},
{
"category": "self",
"summary": "SUSE Bug 1224516",
"url": "https://bugzilla.suse.com/1224516"
},
{
"category": "self",
"summary": "SUSE Bug 1224520",
"url": "https://bugzilla.suse.com/1224520"
},
{
"category": "self",
"summary": "SUSE Bug 1224523",
"url": "https://bugzilla.suse.com/1224523"
},
{
"category": "self",
"summary": "SUSE Bug 1224539",
"url": "https://bugzilla.suse.com/1224539"
},
{
"category": "self",
"summary": "SUSE Bug 1224540",
"url": "https://bugzilla.suse.com/1224540"
},
{
"category": "self",
"summary": "SUSE Bug 1224544",
"url": "https://bugzilla.suse.com/1224544"
},
{
"category": "self",
"summary": "SUSE Bug 1224545",
"url": "https://bugzilla.suse.com/1224545"
},
{
"category": "self",
"summary": "SUSE Bug 1224549",
"url": "https://bugzilla.suse.com/1224549"
},
{
"category": "self",
"summary": "SUSE Bug 1224572",
"url": "https://bugzilla.suse.com/1224572"
},
{
"category": "self",
"summary": "SUSE Bug 1224575",
"url": "https://bugzilla.suse.com/1224575"
},
{
"category": "self",
"summary": "SUSE Bug 1224583",
"url": "https://bugzilla.suse.com/1224583"
},
{
"category": "self",
"summary": "SUSE Bug 1224584",
"url": "https://bugzilla.suse.com/1224584"
},
{
"category": "self",
"summary": "SUSE Bug 1224589",
"url": "https://bugzilla.suse.com/1224589"
},
{
"category": "self",
"summary": "SUSE Bug 1224604",
"url": "https://bugzilla.suse.com/1224604"
},
{
"category": "self",
"summary": "SUSE Bug 1224606",
"url": "https://bugzilla.suse.com/1224606"
},
{
"category": "self",
"summary": "SUSE Bug 1224612",
"url": "https://bugzilla.suse.com/1224612"
},
{
"category": "self",
"summary": "SUSE Bug 1224614",
"url": "https://bugzilla.suse.com/1224614"
},
{
"category": "self",
"summary": "SUSE Bug 1224619",
"url": "https://bugzilla.suse.com/1224619"
},
{
"category": "self",
"summary": "SUSE Bug 1224636",
"url": "https://bugzilla.suse.com/1224636"
},
{
"category": "self",
"summary": "SUSE Bug 1224641",
"url": "https://bugzilla.suse.com/1224641"
},
{
"category": "self",
"summary": "SUSE Bug 1224655",
"url": "https://bugzilla.suse.com/1224655"
},
{
"category": "self",
"summary": "SUSE Bug 1224659",
"url": "https://bugzilla.suse.com/1224659"
},
{
"category": "self",
"summary": "SUSE Bug 1224661",
"url": "https://bugzilla.suse.com/1224661"
},
{
"category": "self",
"summary": "SUSE Bug 1224662",
"url": "https://bugzilla.suse.com/1224662"
},
{
"category": "self",
"summary": "SUSE Bug 1224670",
"url": "https://bugzilla.suse.com/1224670"
},
{
"category": "self",
"summary": "SUSE Bug 1224673",
"url": "https://bugzilla.suse.com/1224673"
},
{
"category": "self",
"summary": "SUSE Bug 1224698",
"url": "https://bugzilla.suse.com/1224698"
},
{
"category": "self",
"summary": "SUSE Bug 1224735",
"url": "https://bugzilla.suse.com/1224735"
},
{
"category": "self",
"summary": "SUSE Bug 1224743",
"url": "https://bugzilla.suse.com/1224743"
},
{
"category": "self",
"summary": "SUSE Bug 1224751",
"url": "https://bugzilla.suse.com/1224751"
},
{
"category": "self",
"summary": "SUSE Bug 1224759",
"url": "https://bugzilla.suse.com/1224759"
},
{
"category": "self",
"summary": "SUSE Bug 1224767",
"url": "https://bugzilla.suse.com/1224767"
},
{
"category": "self",
"summary": "SUSE Bug 1224928",
"url": "https://bugzilla.suse.com/1224928"
},
{
"category": "self",
"summary": "SUSE Bug 1224930",
"url": "https://bugzilla.suse.com/1224930"
},
{
"category": "self",
"summary": "SUSE Bug 1224932",
"url": "https://bugzilla.suse.com/1224932"
},
{
"category": "self",
"summary": "SUSE Bug 1224933",
"url": "https://bugzilla.suse.com/1224933"
},
{
"category": "self",
"summary": "SUSE Bug 1224935",
"url": "https://bugzilla.suse.com/1224935"
},
{
"category": "self",
"summary": "SUSE Bug 1224937",
"url": "https://bugzilla.suse.com/1224937"
},
{
"category": "self",
"summary": "SUSE Bug 1224939",
"url": "https://bugzilla.suse.com/1224939"
},
{
"category": "self",
"summary": "SUSE Bug 1224941",
"url": "https://bugzilla.suse.com/1224941"
},
{
"category": "self",
"summary": "SUSE Bug 1224944",
"url": "https://bugzilla.suse.com/1224944"
},
{
"category": "self",
"summary": "SUSE Bug 1224946",
"url": "https://bugzilla.suse.com/1224946"
},
{
"category": "self",
"summary": "SUSE Bug 1224947",
"url": "https://bugzilla.suse.com/1224947"
},
{
"category": "self",
"summary": "SUSE Bug 1224949",
"url": "https://bugzilla.suse.com/1224949"
},
{
"category": "self",
"summary": "SUSE Bug 1224951",
"url": "https://bugzilla.suse.com/1224951"
},
{
"category": "self",
"summary": "SUSE Bug 1224988",
"url": "https://bugzilla.suse.com/1224988"
},
{
"category": "self",
"summary": "SUSE Bug 1224992",
"url": "https://bugzilla.suse.com/1224992"
},
{
"category": "self",
"summary": "SUSE Bug 1224998",
"url": "https://bugzilla.suse.com/1224998"
},
{
"category": "self",
"summary": "SUSE Bug 1225000",
"url": "https://bugzilla.suse.com/1225000"
},
{
"category": "self",
"summary": "SUSE Bug 1225001",
"url": "https://bugzilla.suse.com/1225001"
},
{
"category": "self",
"summary": "SUSE Bug 1225004",
"url": "https://bugzilla.suse.com/1225004"
},
{
"category": "self",
"summary": "SUSE Bug 1225006",
"url": "https://bugzilla.suse.com/1225006"
},
{
"category": "self",
"summary": "SUSE Bug 1225008",
"url": "https://bugzilla.suse.com/1225008"
},
{
"category": "self",
"summary": "SUSE Bug 1225009",
"url": "https://bugzilla.suse.com/1225009"
},
{
"category": "self",
"summary": "SUSE Bug 1225014",
"url": "https://bugzilla.suse.com/1225014"
},
{
"category": "self",
"summary": "SUSE Bug 1225015",
"url": "https://bugzilla.suse.com/1225015"
},
{
"category": "self",
"summary": "SUSE Bug 1225022",
"url": "https://bugzilla.suse.com/1225022"
},
{
"category": "self",
"summary": "SUSE Bug 1225025",
"url": "https://bugzilla.suse.com/1225025"
},
{
"category": "self",
"summary": "SUSE Bug 1225028",
"url": "https://bugzilla.suse.com/1225028"
},
{
"category": "self",
"summary": "SUSE Bug 1225029",
"url": "https://bugzilla.suse.com/1225029"
},
{
"category": "self",
"summary": "SUSE Bug 1225031",
"url": "https://bugzilla.suse.com/1225031"
},
{
"category": "self",
"summary": "SUSE Bug 1225036",
"url": "https://bugzilla.suse.com/1225036"
},
{
"category": "self",
"summary": "SUSE Bug 1225041",
"url": "https://bugzilla.suse.com/1225041"
},
{
"category": "self",
"summary": "SUSE Bug 1225044",
"url": "https://bugzilla.suse.com/1225044"
},
{
"category": "self",
"summary": "SUSE Bug 1225049",
"url": "https://bugzilla.suse.com/1225049"
},
{
"category": "self",
"summary": "SUSE Bug 1225050",
"url": "https://bugzilla.suse.com/1225050"
},
{
"category": "self",
"summary": "SUSE Bug 1225076",
"url": "https://bugzilla.suse.com/1225076"
},
{
"category": "self",
"summary": "SUSE Bug 1225077",
"url": "https://bugzilla.suse.com/1225077"
},
{
"category": "self",
"summary": "SUSE Bug 1225078",
"url": "https://bugzilla.suse.com/1225078"
},
{
"category": "self",
"summary": "SUSE Bug 1225081",
"url": "https://bugzilla.suse.com/1225081"
},
{
"category": "self",
"summary": "SUSE Bug 1225085",
"url": "https://bugzilla.suse.com/1225085"
},
{
"category": "self",
"summary": "SUSE Bug 1225086",
"url": "https://bugzilla.suse.com/1225086"
},
{
"category": "self",
"summary": "SUSE Bug 1225088",
"url": "https://bugzilla.suse.com/1225088"
},
{
"category": "self",
"summary": "SUSE Bug 1225090",
"url": "https://bugzilla.suse.com/1225090"
},
{
"category": "self",
"summary": "SUSE Bug 1225092",
"url": "https://bugzilla.suse.com/1225092"
},
{
"category": "self",
"summary": "SUSE Bug 1225096",
"url": "https://bugzilla.suse.com/1225096"
},
{
"category": "self",
"summary": "SUSE Bug 1225097",
"url": "https://bugzilla.suse.com/1225097"
},
{
"category": "self",
"summary": "SUSE Bug 1225098",
"url": "https://bugzilla.suse.com/1225098"
},
{
"category": "self",
"summary": "SUSE Bug 1225101",
"url": "https://bugzilla.suse.com/1225101"
},
{
"category": "self",
"summary": "SUSE Bug 1225103",
"url": "https://bugzilla.suse.com/1225103"
},
{
"category": "self",
"summary": "SUSE Bug 1225104",
"url": "https://bugzilla.suse.com/1225104"
},
{
"category": "self",
"summary": "SUSE Bug 1225105",
"url": "https://bugzilla.suse.com/1225105"
},
{
"category": "self",
"summary": "SUSE Bug 1225106",
"url": "https://bugzilla.suse.com/1225106"
},
{
"category": "self",
"summary": "SUSE Bug 1225108",
"url": "https://bugzilla.suse.com/1225108"
},
{
"category": "self",
"summary": "SUSE Bug 1225120",
"url": "https://bugzilla.suse.com/1225120"
},
{
"category": "self",
"summary": "SUSE Bug 1225132",
"url": "https://bugzilla.suse.com/1225132"
},
{
"category": "self",
"summary": "SUSE Bug 1225172",
"url": "https://bugzilla.suse.com/1225172"
},
{
"category": "self",
"summary": "SUSE Bug 1225180",
"url": "https://bugzilla.suse.com/1225180"
},
{
"category": "self",
"summary": "SUSE Bug 1225272",
"url": "https://bugzilla.suse.com/1225272"
},
{
"category": "self",
"summary": "SUSE Bug 1225300",
"url": "https://bugzilla.suse.com/1225300"
},
{
"category": "self",
"summary": "SUSE Bug 1225391",
"url": "https://bugzilla.suse.com/1225391"
},
{
"category": "self",
"summary": "SUSE Bug 1225472",
"url": "https://bugzilla.suse.com/1225472"
},
{
"category": "self",
"summary": "SUSE Bug 1225475",
"url": "https://bugzilla.suse.com/1225475"
},
{
"category": "self",
"summary": "SUSE Bug 1225476",
"url": "https://bugzilla.suse.com/1225476"
},
{
"category": "self",
"summary": "SUSE Bug 1225477",
"url": "https://bugzilla.suse.com/1225477"
},
{
"category": "self",
"summary": "SUSE Bug 1225478",
"url": "https://bugzilla.suse.com/1225478"
},
{
"category": "self",
"summary": "SUSE Bug 1225485",
"url": "https://bugzilla.suse.com/1225485"
},
{
"category": "self",
"summary": "SUSE Bug 1225489",
"url": "https://bugzilla.suse.com/1225489"
},
{
"category": "self",
"summary": "SUSE Bug 1225490",
"url": "https://bugzilla.suse.com/1225490"
},
{
"category": "self",
"summary": "SUSE Bug 1225527",
"url": "https://bugzilla.suse.com/1225527"
},
{
"category": "self",
"summary": "SUSE Bug 1225529",
"url": "https://bugzilla.suse.com/1225529"
},
{
"category": "self",
"summary": "SUSE Bug 1225530",
"url": "https://bugzilla.suse.com/1225530"
},
{
"category": "self",
"summary": "SUSE Bug 1225532",
"url": "https://bugzilla.suse.com/1225532"
},
{
"category": "self",
"summary": "SUSE Bug 1225534",
"url": "https://bugzilla.suse.com/1225534"
},
{
"category": "self",
"summary": "SUSE Bug 1225548",
"url": "https://bugzilla.suse.com/1225548"
},
{
"category": "self",
"summary": "SUSE Bug 1225550",
"url": "https://bugzilla.suse.com/1225550"
},
{
"category": "self",
"summary": "SUSE Bug 1225553",
"url": "https://bugzilla.suse.com/1225553"
},
{
"category": "self",
"summary": "SUSE Bug 1225554",
"url": "https://bugzilla.suse.com/1225554"
},
{
"category": "self",
"summary": "SUSE Bug 1225555",
"url": "https://bugzilla.suse.com/1225555"
},
{
"category": "self",
"summary": "SUSE Bug 1225556",
"url": "https://bugzilla.suse.com/1225556"
},
{
"category": "self",
"summary": "SUSE Bug 1225557",
"url": "https://bugzilla.suse.com/1225557"
},
{
"category": "self",
"summary": "SUSE Bug 1225559",
"url": "https://bugzilla.suse.com/1225559"
},
{
"category": "self",
"summary": "SUSE Bug 1225560",
"url": "https://bugzilla.suse.com/1225560"
},
{
"category": "self",
"summary": "SUSE Bug 1225564",
"url": "https://bugzilla.suse.com/1225564"
},
{
"category": "self",
"summary": "SUSE Bug 1225565",
"url": "https://bugzilla.suse.com/1225565"
},
{
"category": "self",
"summary": "SUSE Bug 1225566",
"url": "https://bugzilla.suse.com/1225566"
},
{
"category": "self",
"summary": "SUSE Bug 1225568",
"url": "https://bugzilla.suse.com/1225568"
},
{
"category": "self",
"summary": "SUSE Bug 1225569",
"url": "https://bugzilla.suse.com/1225569"
},
{
"category": "self",
"summary": "SUSE Bug 1225570",
"url": "https://bugzilla.suse.com/1225570"
},
{
"category": "self",
"summary": "SUSE Bug 1225571",
"url": "https://bugzilla.suse.com/1225571"
},
{
"category": "self",
"summary": "SUSE Bug 1225572",
"url": "https://bugzilla.suse.com/1225572"
},
{
"category": "self",
"summary": "SUSE Bug 1225573",
"url": "https://bugzilla.suse.com/1225573"
},
{
"category": "self",
"summary": "SUSE Bug 1225577",
"url": "https://bugzilla.suse.com/1225577"
},
{
"category": "self",
"summary": "SUSE Bug 1225581",
"url": "https://bugzilla.suse.com/1225581"
},
{
"category": "self",
"summary": "SUSE Bug 1225583",
"url": "https://bugzilla.suse.com/1225583"
},
{
"category": "self",
"summary": "SUSE Bug 1225584",
"url": "https://bugzilla.suse.com/1225584"
},
{
"category": "self",
"summary": "SUSE Bug 1225585",
"url": "https://bugzilla.suse.com/1225585"
},
{
"category": "self",
"summary": "SUSE Bug 1225586",
"url": "https://bugzilla.suse.com/1225586"
},
{
"category": "self",
"summary": "SUSE Bug 1225587",
"url": "https://bugzilla.suse.com/1225587"
},
{
"category": "self",
"summary": "SUSE Bug 1225588",
"url": "https://bugzilla.suse.com/1225588"
},
{
"category": "self",
"summary": "SUSE Bug 1225589",
"url": "https://bugzilla.suse.com/1225589"
},
{
"category": "self",
"summary": "SUSE Bug 1225590",
"url": "https://bugzilla.suse.com/1225590"
},
{
"category": "self",
"summary": "SUSE Bug 1225591",
"url": "https://bugzilla.suse.com/1225591"
},
{
"category": "self",
"summary": "SUSE Bug 1225592",
"url": "https://bugzilla.suse.com/1225592"
},
{
"category": "self",
"summary": "SUSE Bug 1225594",
"url": "https://bugzilla.suse.com/1225594"
},
{
"category": "self",
"summary": "SUSE Bug 1225595",
"url": "https://bugzilla.suse.com/1225595"
},
{
"category": "self",
"summary": "SUSE Bug 1225599",
"url": "https://bugzilla.suse.com/1225599"
},
{
"category": "self",
"summary": "SUSE Bug 1225600",
"url": "https://bugzilla.suse.com/1225600"
},
{
"category": "self",
"summary": "SUSE Bug 1225601",
"url": "https://bugzilla.suse.com/1225601"
},
{
"category": "self",
"summary": "SUSE Bug 1225602",
"url": "https://bugzilla.suse.com/1225602"
},
{
"category": "self",
"summary": "SUSE Bug 1225605",
"url": "https://bugzilla.suse.com/1225605"
},
{
"category": "self",
"summary": "SUSE Bug 1225609",
"url": "https://bugzilla.suse.com/1225609"
},
{
"category": "self",
"summary": "SUSE Bug 1225611",
"url": "https://bugzilla.suse.com/1225611"
},
{
"category": "self",
"summary": "SUSE Bug 1225681",
"url": "https://bugzilla.suse.com/1225681"
},
{
"category": "self",
"summary": "SUSE Bug 1225702",
"url": "https://bugzilla.suse.com/1225702"
},
{
"category": "self",
"summary": "SUSE Bug 1225711",
"url": "https://bugzilla.suse.com/1225711"
},
{
"category": "self",
"summary": "SUSE Bug 1225717",
"url": "https://bugzilla.suse.com/1225717"
},
{
"category": "self",
"summary": "SUSE Bug 1225719",
"url": "https://bugzilla.suse.com/1225719"
},
{
"category": "self",
"summary": "SUSE Bug 1225723",
"url": "https://bugzilla.suse.com/1225723"
},
{
"category": "self",
"summary": "SUSE Bug 1225726",
"url": "https://bugzilla.suse.com/1225726"
},
{
"category": "self",
"summary": "SUSE Bug 1225731",
"url": "https://bugzilla.suse.com/1225731"
},
{
"category": "self",
"summary": "SUSE Bug 1225732",
"url": "https://bugzilla.suse.com/1225732"
},
{
"category": "self",
"summary": "SUSE Bug 1225737",
"url": "https://bugzilla.suse.com/1225737"
},
{
"category": "self",
"summary": "SUSE Bug 1225741",
"url": "https://bugzilla.suse.com/1225741"
},
{
"category": "self",
"summary": "SUSE Bug 1225744",
"url": "https://bugzilla.suse.com/1225744"
},
{
"category": "self",
"summary": "SUSE Bug 1225745",
"url": "https://bugzilla.suse.com/1225745"
},
{
"category": "self",
"summary": "SUSE Bug 1225746",
"url": "https://bugzilla.suse.com/1225746"
},
{
"category": "self",
"summary": "SUSE Bug 1225752",
"url": "https://bugzilla.suse.com/1225752"
},
{
"category": "self",
"summary": "SUSE Bug 1225753",
"url": "https://bugzilla.suse.com/1225753"
},
{
"category": "self",
"summary": "SUSE Bug 1225757",
"url": "https://bugzilla.suse.com/1225757"
},
{
"category": "self",
"summary": "SUSE Bug 1225758",
"url": "https://bugzilla.suse.com/1225758"
},
{
"category": "self",
"summary": "SUSE Bug 1225759",
"url": "https://bugzilla.suse.com/1225759"
},
{
"category": "self",
"summary": "SUSE Bug 1225760",
"url": "https://bugzilla.suse.com/1225760"
},
{
"category": "self",
"summary": "SUSE Bug 1225761",
"url": "https://bugzilla.suse.com/1225761"
},
{
"category": "self",
"summary": "SUSE Bug 1225762",
"url": "https://bugzilla.suse.com/1225762"
},
{
"category": "self",
"summary": "SUSE Bug 1225763",
"url": "https://bugzilla.suse.com/1225763"
},
{
"category": "self",
"summary": "SUSE Bug 1225767",
"url": "https://bugzilla.suse.com/1225767"
},
{
"category": "self",
"summary": "SUSE Bug 1225770",
"url": "https://bugzilla.suse.com/1225770"
},
{
"category": "self",
"summary": "SUSE Bug 1225805",
"url": "https://bugzilla.suse.com/1225805"
},
{
"category": "self",
"summary": "SUSE Bug 1225810",
"url": "https://bugzilla.suse.com/1225810"
},
{
"category": "self",
"summary": "SUSE Bug 1225815",
"url": "https://bugzilla.suse.com/1225815"
},
{
"category": "self",
"summary": "SUSE Bug 1225820",
"url": "https://bugzilla.suse.com/1225820"
},
{
"category": "self",
"summary": "SUSE Bug 1225823",
"url": "https://bugzilla.suse.com/1225823"
},
{
"category": "self",
"summary": "SUSE Bug 1225827",
"url": "https://bugzilla.suse.com/1225827"
},
{
"category": "self",
"summary": "SUSE Bug 1225829",
"url": "https://bugzilla.suse.com/1225829"
},
{
"category": "self",
"summary": "SUSE Bug 1225830",
"url": "https://bugzilla.suse.com/1225830"
},
{
"category": "self",
"summary": "SUSE Bug 1225834",
"url": "https://bugzilla.suse.com/1225834"
},
{
"category": "self",
"summary": "SUSE Bug 1225835",
"url": "https://bugzilla.suse.com/1225835"
},
{
"category": "self",
"summary": "SUSE Bug 1225839",
"url": "https://bugzilla.suse.com/1225839"
},
{
"category": "self",
"summary": "SUSE Bug 1225840",
"url": "https://bugzilla.suse.com/1225840"
},
{
"category": "self",
"summary": "SUSE Bug 1225843",
"url": "https://bugzilla.suse.com/1225843"
},
{
"category": "self",
"summary": "SUSE Bug 1225847",
"url": "https://bugzilla.suse.com/1225847"
},
{
"category": "self",
"summary": "SUSE Bug 1225851",
"url": "https://bugzilla.suse.com/1225851"
},
{
"category": "self",
"summary": "SUSE Bug 1225856",
"url": "https://bugzilla.suse.com/1225856"
},
{
"category": "self",
"summary": "SUSE Bug 1225866",
"url": "https://bugzilla.suse.com/1225866"
},
{
"category": "self",
"summary": "SUSE Bug 1225872",
"url": "https://bugzilla.suse.com/1225872"
},
{
"category": "self",
"summary": "SUSE Bug 1225894",
"url": "https://bugzilla.suse.com/1225894"
},
{
"category": "self",
"summary": "SUSE Bug 1225895",
"url": "https://bugzilla.suse.com/1225895"
},
{
"category": "self",
"summary": "SUSE Bug 1225896",
"url": "https://bugzilla.suse.com/1225896"
},
{
"category": "self",
"summary": "SUSE Bug 1225898",
"url": "https://bugzilla.suse.com/1225898"
},
{
"category": "self",
"summary": "SUSE Bug 1225903",
"url": "https://bugzilla.suse.com/1225903"
},
{
"category": "self",
"summary": "SUSE Bug 1226022",
"url": "https://bugzilla.suse.com/1226022"
},
{
"category": "self",
"summary": "SUSE Bug 1226131",
"url": "https://bugzilla.suse.com/1226131"
},
{
"category": "self",
"summary": "SUSE Bug 1226145",
"url": "https://bugzilla.suse.com/1226145"
},
{
"category": "self",
"summary": "SUSE Bug 1226149",
"url": "https://bugzilla.suse.com/1226149"
},
{
"category": "self",
"summary": "SUSE Bug 1226155",
"url": "https://bugzilla.suse.com/1226155"
},
{
"category": "self",
"summary": "SUSE Bug 1226158",
"url": "https://bugzilla.suse.com/1226158"
},
{
"category": "self",
"summary": "SUSE Bug 1226163",
"url": "https://bugzilla.suse.com/1226163"
},
{
"category": "self",
"summary": "SUSE Bug 1226202",
"url": "https://bugzilla.suse.com/1226202"
},
{
"category": "self",
"summary": "SUSE Bug 1226211",
"url": "https://bugzilla.suse.com/1226211"
},
{
"category": "self",
"summary": "SUSE Bug 1226212",
"url": "https://bugzilla.suse.com/1226212"
},
{
"category": "self",
"summary": "SUSE Bug 1226213",
"url": "https://bugzilla.suse.com/1226213"
},
{
"category": "self",
"summary": "SUSE Bug 1226226",
"url": "https://bugzilla.suse.com/1226226"
},
{
"category": "self",
"summary": "SUSE Bug 1226457",
"url": "https://bugzilla.suse.com/1226457"
},
{
"category": "self",
"summary": "SUSE Bug 1226502",
"url": "https://bugzilla.suse.com/1226502"
},
{
"category": "self",
"summary": "SUSE Bug 1226503",
"url": "https://bugzilla.suse.com/1226503"
},
{
"category": "self",
"summary": "SUSE Bug 1226513",
"url": "https://bugzilla.suse.com/1226513"
},
{
"category": "self",
"summary": "SUSE Bug 1226514",
"url": "https://bugzilla.suse.com/1226514"
},
{
"category": "self",
"summary": "SUSE Bug 1226519",
"url": "https://bugzilla.suse.com/1226519"
},
{
"category": "self",
"summary": "SUSE Bug 1226520",
"url": "https://bugzilla.suse.com/1226520"
},
{
"category": "self",
"summary": "SUSE Bug 1226582",
"url": "https://bugzilla.suse.com/1226582"
},
{
"category": "self",
"summary": "SUSE Bug 1226587",
"url": "https://bugzilla.suse.com/1226587"
},
{
"category": "self",
"summary": "SUSE Bug 1226588",
"url": "https://bugzilla.suse.com/1226588"
},
{
"category": "self",
"summary": "SUSE Bug 1226592",
"url": "https://bugzilla.suse.com/1226592"
},
{
"category": "self",
"summary": "SUSE Bug 1226593",
"url": "https://bugzilla.suse.com/1226593"
},
{
"category": "self",
"summary": "SUSE Bug 1226594",
"url": "https://bugzilla.suse.com/1226594"
},
{
"category": "self",
"summary": "SUSE Bug 1226595",
"url": "https://bugzilla.suse.com/1226595"
},
{
"category": "self",
"summary": "SUSE Bug 1226597",
"url": "https://bugzilla.suse.com/1226597"
},
{
"category": "self",
"summary": "SUSE Bug 1226607",
"url": "https://bugzilla.suse.com/1226607"
},
{
"category": "self",
"summary": "SUSE Bug 1226608",
"url": "https://bugzilla.suse.com/1226608"
},
{
"category": "self",
"summary": "SUSE Bug 1226610",
"url": "https://bugzilla.suse.com/1226610"
},
{
"category": "self",
"summary": "SUSE Bug 1226612",
"url": "https://bugzilla.suse.com/1226612"
},
{
"category": "self",
"summary": "SUSE Bug 1226613",
"url": "https://bugzilla.suse.com/1226613"
},
{
"category": "self",
"summary": "SUSE Bug 1226630",
"url": "https://bugzilla.suse.com/1226630"
},
{
"category": "self",
"summary": "SUSE Bug 1226632",
"url": "https://bugzilla.suse.com/1226632"
},
{
"category": "self",
"summary": "SUSE Bug 1226633",
"url": "https://bugzilla.suse.com/1226633"
},
{
"category": "self",
"summary": "SUSE Bug 1226634",
"url": "https://bugzilla.suse.com/1226634"
},
{
"category": "self",
"summary": "SUSE Bug 1226637",
"url": "https://bugzilla.suse.com/1226637"
},
{
"category": "self",
"summary": "SUSE Bug 1226657",
"url": "https://bugzilla.suse.com/1226657"
},
{
"category": "self",
"summary": "SUSE Bug 1226658",
"url": "https://bugzilla.suse.com/1226658"
},
{
"category": "self",
"summary": "SUSE Bug 1226734",
"url": "https://bugzilla.suse.com/1226734"
},
{
"category": "self",
"summary": "SUSE Bug 1226735",
"url": "https://bugzilla.suse.com/1226735"
},
{
"category": "self",
"summary": "SUSE Bug 1226737",
"url": "https://bugzilla.suse.com/1226737"
},
{
"category": "self",
"summary": "SUSE Bug 1226738",
"url": "https://bugzilla.suse.com/1226738"
},
{
"category": "self",
"summary": "SUSE Bug 1226739",
"url": "https://bugzilla.suse.com/1226739"
},
{
"category": "self",
"summary": "SUSE Bug 1226740",
"url": "https://bugzilla.suse.com/1226740"
},
{
"category": "self",
"summary": "SUSE Bug 1226741",
"url": "https://bugzilla.suse.com/1226741"
},
{
"category": "self",
"summary": "SUSE Bug 1226742",
"url": "https://bugzilla.suse.com/1226742"
},
{
"category": "self",
"summary": "SUSE Bug 1226744",
"url": "https://bugzilla.suse.com/1226744"
},
{
"category": "self",
"summary": "SUSE Bug 1226746",
"url": "https://bugzilla.suse.com/1226746"
},
{
"category": "self",
"summary": "SUSE Bug 1226747",
"url": "https://bugzilla.suse.com/1226747"
},
{
"category": "self",
"summary": "SUSE Bug 1226749",
"url": "https://bugzilla.suse.com/1226749"
},
{
"category": "self",
"summary": "SUSE Bug 1226750",
"url": "https://bugzilla.suse.com/1226750"
},
{
"category": "self",
"summary": "SUSE Bug 1226754",
"url": "https://bugzilla.suse.com/1226754"
},
{
"category": "self",
"summary": "SUSE Bug 1226757",
"url": "https://bugzilla.suse.com/1226757"
},
{
"category": "self",
"summary": "SUSE Bug 1226758",
"url": "https://bugzilla.suse.com/1226758"
},
{
"category": "self",
"summary": "SUSE Bug 1226760",
"url": "https://bugzilla.suse.com/1226760"
},
{
"category": "self",
"summary": "SUSE Bug 1226761",
"url": "https://bugzilla.suse.com/1226761"
},
{
"category": "self",
"summary": "SUSE Bug 1226764",
"url": "https://bugzilla.suse.com/1226764"
},
{
"category": "self",
"summary": "SUSE Bug 1226767",
"url": "https://bugzilla.suse.com/1226767"
},
{
"category": "self",
"summary": "SUSE Bug 1226768",
"url": "https://bugzilla.suse.com/1226768"
},
{
"category": "self",
"summary": "SUSE Bug 1226769",
"url": "https://bugzilla.suse.com/1226769"
},
{
"category": "self",
"summary": "SUSE Bug 1226771",
"url": "https://bugzilla.suse.com/1226771"
},
{
"category": "self",
"summary": "SUSE Bug 1226772",
"url": "https://bugzilla.suse.com/1226772"
},
{
"category": "self",
"summary": "SUSE Bug 1226774",
"url": "https://bugzilla.suse.com/1226774"
},
{
"category": "self",
"summary": "SUSE Bug 1226775",
"url": "https://bugzilla.suse.com/1226775"
},
{
"category": "self",
"summary": "SUSE Bug 1226776",
"url": "https://bugzilla.suse.com/1226776"
},
{
"category": "self",
"summary": "SUSE Bug 1226777",
"url": "https://bugzilla.suse.com/1226777"
},
{
"category": "self",
"summary": "SUSE Bug 1226780",
"url": "https://bugzilla.suse.com/1226780"
},
{
"category": "self",
"summary": "SUSE Bug 1226781",
"url": "https://bugzilla.suse.com/1226781"
},
{
"category": "self",
"summary": "SUSE Bug 1226783",
"url": "https://bugzilla.suse.com/1226783"
},
{
"category": "self",
"summary": "SUSE Bug 1226785",
"url": "https://bugzilla.suse.com/1226785"
},
{
"category": "self",
"summary": "SUSE Bug 1226786",
"url": "https://bugzilla.suse.com/1226786"
},
{
"category": "self",
"summary": "SUSE Bug 1226788",
"url": "https://bugzilla.suse.com/1226788"
},
{
"category": "self",
"summary": "SUSE Bug 1226789",
"url": "https://bugzilla.suse.com/1226789"
},
{
"category": "self",
"summary": "SUSE Bug 1226790",
"url": "https://bugzilla.suse.com/1226790"
},
{
"category": "self",
"summary": "SUSE Bug 1226791",
"url": "https://bugzilla.suse.com/1226791"
},
{
"category": "self",
"summary": "SUSE Bug 1226796",
"url": "https://bugzilla.suse.com/1226796"
},
{
"category": "self",
"summary": "SUSE Bug 1226799",
"url": "https://bugzilla.suse.com/1226799"
},
{
"category": "self",
"summary": "SUSE Bug 1226837",
"url": "https://bugzilla.suse.com/1226837"
},
{
"category": "self",
"summary": "SUSE Bug 1226839",
"url": "https://bugzilla.suse.com/1226839"
},
{
"category": "self",
"summary": "SUSE Bug 1226840",
"url": "https://bugzilla.suse.com/1226840"
},
{
"category": "self",
"summary": "SUSE Bug 1226841",
"url": "https://bugzilla.suse.com/1226841"
},
{
"category": "self",
"summary": "SUSE Bug 1226842",
"url": "https://bugzilla.suse.com/1226842"
},
{
"category": "self",
"summary": "SUSE Bug 1226844",
"url": "https://bugzilla.suse.com/1226844"
},
{
"category": "self",
"summary": "SUSE Bug 1226848",
"url": "https://bugzilla.suse.com/1226848"
},
{
"category": "self",
"summary": "SUSE Bug 1226852",
"url": "https://bugzilla.suse.com/1226852"
},
{
"category": "self",
"summary": "SUSE Bug 1226856",
"url": "https://bugzilla.suse.com/1226856"
},
{
"category": "self",
"summary": "SUSE Bug 1226857",
"url": "https://bugzilla.suse.com/1226857"
},
{
"category": "self",
"summary": "SUSE Bug 1226859",
"url": "https://bugzilla.suse.com/1226859"
},
{
"category": "self",
"summary": "SUSE Bug 1226861",
"url": "https://bugzilla.suse.com/1226861"
},
{
"category": "self",
"summary": "SUSE Bug 1226863",
"url": "https://bugzilla.suse.com/1226863"
},
{
"category": "self",
"summary": "SUSE Bug 1226864",
"url": "https://bugzilla.suse.com/1226864"
},
{
"category": "self",
"summary": "SUSE Bug 1226866",
"url": "https://bugzilla.suse.com/1226866"
},
{
"category": "self",
"summary": "SUSE Bug 1226867",
"url": "https://bugzilla.suse.com/1226867"
},
{
"category": "self",
"summary": "SUSE Bug 1226868",
"url": "https://bugzilla.suse.com/1226868"
},
{
"category": "self",
"summary": "SUSE Bug 1226875",
"url": "https://bugzilla.suse.com/1226875"
},
{
"category": "self",
"summary": "SUSE Bug 1226876",
"url": "https://bugzilla.suse.com/1226876"
},
{
"category": "self",
"summary": "SUSE Bug 1226878",
"url": "https://bugzilla.suse.com/1226878"
},
{
"category": "self",
"summary": "SUSE Bug 1226879",
"url": "https://bugzilla.suse.com/1226879"
},
{
"category": "self",
"summary": "SUSE Bug 1226883",
"url": "https://bugzilla.suse.com/1226883"
},
{
"category": "self",
"summary": "SUSE Bug 1226886",
"url": "https://bugzilla.suse.com/1226886"
},
{
"category": "self",
"summary": "SUSE Bug 1226890",
"url": "https://bugzilla.suse.com/1226890"
},
{
"category": "self",
"summary": "SUSE Bug 1226891",
"url": "https://bugzilla.suse.com/1226891"
},
{
"category": "self",
"summary": "SUSE Bug 1226894",
"url": "https://bugzilla.suse.com/1226894"
},
{
"category": "self",
"summary": "SUSE Bug 1226895",
"url": "https://bugzilla.suse.com/1226895"
},
{
"category": "self",
"summary": "SUSE Bug 1226905",
"url": "https://bugzilla.suse.com/1226905"
},
{
"category": "self",
"summary": "SUSE Bug 1226908",
"url": "https://bugzilla.suse.com/1226908"
},
{
"category": "self",
"summary": "SUSE Bug 1226909",
"url": "https://bugzilla.suse.com/1226909"
},
{
"category": "self",
"summary": "SUSE Bug 1226911",
"url": "https://bugzilla.suse.com/1226911"
},
{
"category": "self",
"summary": "SUSE Bug 1226915",
"url": "https://bugzilla.suse.com/1226915"
},
{
"category": "self",
"summary": "SUSE Bug 1226928",
"url": "https://bugzilla.suse.com/1226928"
},
{
"category": "self",
"summary": "SUSE Bug 1226934",
"url": "https://bugzilla.suse.com/1226934"
},
{
"category": "self",
"summary": "SUSE Bug 1226938",
"url": "https://bugzilla.suse.com/1226938"
},
{
"category": "self",
"summary": "SUSE Bug 1226939",
"url": "https://bugzilla.suse.com/1226939"
},
{
"category": "self",
"summary": "SUSE Bug 1226941",
"url": "https://bugzilla.suse.com/1226941"
},
{
"category": "self",
"summary": "SUSE Bug 1226948",
"url": "https://bugzilla.suse.com/1226948"
},
{
"category": "self",
"summary": "SUSE Bug 1226949",
"url": "https://bugzilla.suse.com/1226949"
},
{
"category": "self",
"summary": "SUSE Bug 1226950",
"url": "https://bugzilla.suse.com/1226950"
},
{
"category": "self",
"summary": "SUSE Bug 1226962",
"url": "https://bugzilla.suse.com/1226962"
},
{
"category": "self",
"summary": "SUSE Bug 1226976",
"url": "https://bugzilla.suse.com/1226976"
},
{
"category": "self",
"summary": "SUSE Bug 1226989",
"url": "https://bugzilla.suse.com/1226989"
},
{
"category": "self",
"summary": "SUSE Bug 1226990",
"url": "https://bugzilla.suse.com/1226990"
},
{
"category": "self",
"summary": "SUSE Bug 1226992",
"url": "https://bugzilla.suse.com/1226992"
},
{
"category": "self",
"summary": "SUSE Bug 1226993",
"url": "https://bugzilla.suse.com/1226993"
},
{
"category": "self",
"summary": "SUSE Bug 1226994",
"url": "https://bugzilla.suse.com/1226994"
},
{
"category": "self",
"summary": "SUSE Bug 1226995",
"url": "https://bugzilla.suse.com/1226995"
},
{
"category": "self",
"summary": "SUSE Bug 1226996",
"url": "https://bugzilla.suse.com/1226996"
},
{
"category": "self",
"summary": "SUSE Bug 1227066",
"url": "https://bugzilla.suse.com/1227066"
},
{
"category": "self",
"summary": "SUSE Bug 1227072",
"url": "https://bugzilla.suse.com/1227072"
},
{
"category": "self",
"summary": "SUSE Bug 1227085",
"url": "https://bugzilla.suse.com/1227085"
},
{
"category": "self",
"summary": "SUSE Bug 1227089",
"url": "https://bugzilla.suse.com/1227089"
},
{
"category": "self",
"summary": "SUSE Bug 1227090",
"url": "https://bugzilla.suse.com/1227090"
},
{
"category": "self",
"summary": "SUSE Bug 1227096",
"url": "https://bugzilla.suse.com/1227096"
},
{
"category": "self",
"summary": "SUSE Bug 1227101",
"url": "https://bugzilla.suse.com/1227101"
},
{
"category": "self",
"summary": "SUSE Bug 1227103",
"url": "https://bugzilla.suse.com/1227103"
},
{
"category": "self",
"summary": "SUSE Bug 1227149",
"url": "https://bugzilla.suse.com/1227149"
},
{
"category": "self",
"summary": "SUSE Bug 1227190",
"url": "https://bugzilla.suse.com/1227190"
},
{
"category": "self",
"summary": "SUSE Bug 1227282",
"url": "https://bugzilla.suse.com/1227282"
},
{
"category": "self",
"summary": "SUSE Bug 1227362",
"url": "https://bugzilla.suse.com/1227362"
},
{
"category": "self",
"summary": "SUSE Bug 1227363",
"url": "https://bugzilla.suse.com/1227363"
},
{
"category": "self",
"summary": "SUSE Bug 1227383",
"url": "https://bugzilla.suse.com/1227383"
},
{
"category": "self",
"summary": "SUSE Bug 1227432",
"url": "https://bugzilla.suse.com/1227432"
},
{
"category": "self",
"summary": "SUSE Bug 1227433",
"url": "https://bugzilla.suse.com/1227433"
},
{
"category": "self",
"summary": "SUSE Bug 1227434",
"url": "https://bugzilla.suse.com/1227434"
},
{
"category": "self",
"summary": "SUSE Bug 1227435",
"url": "https://bugzilla.suse.com/1227435"
},
{
"category": "self",
"summary": "SUSE Bug 1227443",
"url": "https://bugzilla.suse.com/1227443"
},
{
"category": "self",
"summary": "SUSE Bug 1227446",
"url": "https://bugzilla.suse.com/1227446"
},
{
"category": "self",
"summary": "SUSE Bug 1227447",
"url": "https://bugzilla.suse.com/1227447"
},
{
"category": "self",
"summary": "SUSE Bug 1227487",
"url": "https://bugzilla.suse.com/1227487"
},
{
"category": "self",
"summary": "SUSE Bug 1227573",
"url": "https://bugzilla.suse.com/1227573"
},
{
"category": "self",
"summary": "SUSE Bug 1227626",
"url": "https://bugzilla.suse.com/1227626"
},
{
"category": "self",
"summary": "SUSE Bug 1227716",
"url": "https://bugzilla.suse.com/1227716"
},
{
"category": "self",
"summary": "SUSE Bug 1227719",
"url": "https://bugzilla.suse.com/1227719"
},
{
"category": "self",
"summary": "SUSE Bug 1227723",
"url": "https://bugzilla.suse.com/1227723"
},
{
"category": "self",
"summary": "SUSE Bug 1227730",
"url": "https://bugzilla.suse.com/1227730"
},
{
"category": "self",
"summary": "SUSE Bug 1227736",
"url": "https://bugzilla.suse.com/1227736"
},
{
"category": "self",
"summary": "SUSE Bug 1227755",
"url": "https://bugzilla.suse.com/1227755"
},
{
"category": "self",
"summary": "SUSE Bug 1227757",
"url": "https://bugzilla.suse.com/1227757"
},
{
"category": "self",
"summary": "SUSE Bug 1227762",
"url": "https://bugzilla.suse.com/1227762"
},
{
"category": "self",
"summary": "SUSE Bug 1227763",
"url": "https://bugzilla.suse.com/1227763"
},
{
"category": "self",
"summary": "SUSE Bug 1227779",
"url": "https://bugzilla.suse.com/1227779"
},
{
"category": "self",
"summary": "SUSE Bug 1227780",
"url": "https://bugzilla.suse.com/1227780"
},
{
"category": "self",
"summary": "SUSE Bug 1227783",
"url": "https://bugzilla.suse.com/1227783"
},
{
"category": "self",
"summary": "SUSE Bug 1227786",
"url": "https://bugzilla.suse.com/1227786"
},
{
"category": "self",
"summary": "SUSE Bug 1227788",
"url": "https://bugzilla.suse.com/1227788"
},
{
"category": "self",
"summary": "SUSE Bug 1227789",
"url": "https://bugzilla.suse.com/1227789"
},
{
"category": "self",
"summary": "SUSE Bug 1227797",
"url": "https://bugzilla.suse.com/1227797"
},
{
"category": "self",
"summary": "SUSE Bug 1227800",
"url": "https://bugzilla.suse.com/1227800"
},
{
"category": "self",
"summary": "SUSE Bug 1227801",
"url": "https://bugzilla.suse.com/1227801"
},
{
"category": "self",
"summary": "SUSE Bug 1227803",
"url": "https://bugzilla.suse.com/1227803"
},
{
"category": "self",
"summary": "SUSE Bug 1227806",
"url": "https://bugzilla.suse.com/1227806"
},
{
"category": "self",
"summary": "SUSE Bug 1227813",
"url": "https://bugzilla.suse.com/1227813"
},
{
"category": "self",
"summary": "SUSE Bug 1227814",
"url": "https://bugzilla.suse.com/1227814"
},
{
"category": "self",
"summary": "SUSE Bug 1227836",
"url": "https://bugzilla.suse.com/1227836"
},
{
"category": "self",
"summary": "SUSE Bug 1227855",
"url": "https://bugzilla.suse.com/1227855"
},
{
"category": "self",
"summary": "SUSE Bug 1227862",
"url": "https://bugzilla.suse.com/1227862"
},
{
"category": "self",
"summary": "SUSE Bug 1227866",
"url": "https://bugzilla.suse.com/1227866"
},
{
"category": "self",
"summary": "SUSE Bug 1227886",
"url": "https://bugzilla.suse.com/1227886"
},
{
"category": "self",
"summary": "SUSE Bug 1227899",
"url": "https://bugzilla.suse.com/1227899"
},
{
"category": "self",
"summary": "SUSE Bug 1227910",
"url": "https://bugzilla.suse.com/1227910"
},
{
"category": "self",
"summary": "SUSE Bug 1227913",
"url": "https://bugzilla.suse.com/1227913"
},
{
"category": "self",
"summary": "SUSE Bug 1227926",
"url": "https://bugzilla.suse.com/1227926"
},
{
"category": "self",
"summary": "SUSE Bug 1228090",
"url": "https://bugzilla.suse.com/1228090"
},
{
"category": "self",
"summary": "SUSE Bug 1228192",
"url": "https://bugzilla.suse.com/1228192"
},
{
"category": "self",
"summary": "SUSE Bug 1228193",
"url": "https://bugzilla.suse.com/1228193"
},
{
"category": "self",
"summary": "SUSE Bug 1228211",
"url": "https://bugzilla.suse.com/1228211"
},
{
"category": "self",
"summary": "SUSE Bug 1228269",
"url": "https://bugzilla.suse.com/1228269"
},
{
"category": "self",
"summary": "SUSE Bug 1228289",
"url": "https://bugzilla.suse.com/1228289"
},
{
"category": "self",
"summary": "SUSE Bug 1228327",
"url": "https://bugzilla.suse.com/1228327"
},
{
"category": "self",
"summary": "SUSE Bug 1228328",
"url": "https://bugzilla.suse.com/1228328"
},
{
"category": "self",
"summary": "SUSE Bug 1228403",
"url": "https://bugzilla.suse.com/1228403"
},
{
"category": "self",
"summary": "SUSE Bug 1228405",
"url": "https://bugzilla.suse.com/1228405"
},
{
"category": "self",
"summary": "SUSE Bug 1228408",
"url": "https://bugzilla.suse.com/1228408"
},
{
"category": "self",
"summary": "SUSE Bug 1228417",
"url": "https://bugzilla.suse.com/1228417"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47432 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47432/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-48772 page",
"url": "https://www.suse.com/security/cve/CVE-2022-48772/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-38417 page",
"url": "https://www.suse.com/security/cve/CVE-2023-38417/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-47210 page",
"url": "https://www.suse.com/security/cve/CVE-2023-47210/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-51780 page",
"url": "https://www.suse.com/security/cve/CVE-2023-51780/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52435 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52435/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52472 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52472/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52622 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52622/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52656 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52656/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52672 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52672/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52699 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52699/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52735 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52735/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52749 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52749/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52750 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52750/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52751 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52751/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52753 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52753/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52754 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52754/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52757 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52757/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52759 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52759/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52762 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52762/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52763 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52763/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52764 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52764/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52765 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52765/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52766 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52766/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52767 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52767/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52768 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52768/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52769 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52769/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52773 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52773/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52774 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52774/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52775 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52775/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52776 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52776/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52777 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52777/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52780 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52780/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52781 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52781/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52782 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52782/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52783 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52783/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52784 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52784/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52786 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52786/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52787 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52787/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52788 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52788/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52789 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52789/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52791 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52791/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52792 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52792/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52794 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52794/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52795 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52795/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52796 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52796/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52798 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52798/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52799 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52799/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52800 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52800/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52801 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52801/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52803 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52803/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52804 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52804/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52805 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52805/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52806 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52806/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52807 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52807/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52808 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52808/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52809 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52809/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52810 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52810/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52811 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52811/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52812 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52812/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52813 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52814 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52815 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52815/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52816 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52816/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52817 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52817/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52818 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52818/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52819 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52819/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52821 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52821/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52825 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52825/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52826 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52826/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52827 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52827/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52829 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52829/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52832 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52832/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52833 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52833/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52834 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52834/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52835 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52835/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52836 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52836/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52837 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52837/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52838 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52838/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52840 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52840/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52841 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52841/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52842 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52842/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52843 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52843/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52844 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52844/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52845 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52845/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52846 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52846/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52847 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52847/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52849 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52849/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52850 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52850/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52851 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52851/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52853 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52853/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52854 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52854/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52855 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52855/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52856 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52856/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52857 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52857/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52858 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52858/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52861 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52861/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52862 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52862/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52863 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52863/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52864 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52864/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52865 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52865/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52866 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52866/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52867 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52867/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52868 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52868/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52869 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52869/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52870 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52870/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52871 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52871/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52872 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52872/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52873 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52873/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52874 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52874/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52875 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52875/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52876 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52876/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52877 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52877/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52878 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52878/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52879 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52879/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52880 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52880/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52881 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52881/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52883 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52883/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52884 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-25741 page",
"url": "https://www.suse.com/security/cve/CVE-2024-25741/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26615 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26615/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26623 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26623/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26625 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26625/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26633 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26633/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26635 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26635/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26636 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26636/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26641 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26641/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26663 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26663/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26665 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26665/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26676 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26676/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26691 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26691/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26734 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26734/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26750 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26750/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26758 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26758/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26767 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26767/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26780 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26780/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26785 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26785/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26813 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26814 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26826 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26826/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26845 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26845/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26863 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26863/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26889 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26889/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26920 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26920/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26944 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26944/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27012 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27012/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27015 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27015/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27016 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27016/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27019 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27019/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27020 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27020/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27025 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27025/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27064 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27064/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27065 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27065/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27402 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27402/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27404 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27404/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27414 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27414/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27419 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27419/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-33619 page",
"url": "https://www.suse.com/security/cve/CVE-2024-33619/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-34777 page",
"url": "https://www.suse.com/security/cve/CVE-2024-34777/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35247 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35247/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35805 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35805/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35807 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35807/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35827 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35827/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35831 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35831/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35843 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35843/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35848 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35848/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35853 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35853/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35854 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35854/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35857 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35857/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35880 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35880/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35884 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35886 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35886/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35890 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35890/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35892 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35892/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35893 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35893/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35896 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35896/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35898 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35898/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35899 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35899/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35900 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35900/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35908 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35908/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35925 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35925/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35926 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35926/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35934 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35934/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35942 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35942/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35957 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35957/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35962 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35962/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35970 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35970/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35976 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35976/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35979 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35979/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35998 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35998/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36003 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36003/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36004 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36004/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36005 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36005/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36008 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36008/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36010 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36010/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36017 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36017/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36024 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36024/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36281 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36281/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36477 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36477/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36478 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36478/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36479 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36479/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36882 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36882/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36887 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36887/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36889 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36889/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36899 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36899/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36900 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36900/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36901 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36901/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36902 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36902/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36903 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36903/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36904 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36904/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36909 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36909/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36910 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36910/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36911 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36911/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36912 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36912/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36913 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36913/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36914 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36914/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36915 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36916 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36916/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36917 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36917/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36919 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36919/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36922 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36922/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36923 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36923/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36924 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36924/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36926 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36926/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36930 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36930/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36934 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36934/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36935 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36935/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36937 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36937/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36938 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36938/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36940 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36940/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36941 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36941/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36942 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36942/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36944 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36944/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36945 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36945/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36946 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36946/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36947 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36947/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36949 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36949/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36950 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36950/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36951 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36951/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36952 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36952/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36955 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36955/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36957 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36957/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36959 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36959/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36960 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36960/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36962 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36962/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36964 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36964/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36965 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36965/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36967 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36967/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36969 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36969/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36971 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36971/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36972 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36972/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36973 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36973/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36974 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36974/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36975 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36975/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36977 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36977/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36978 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36978/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-37021 page",
"url": "https://www.suse.com/security/cve/CVE-2024-37021/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-37078 page",
"url": "https://www.suse.com/security/cve/CVE-2024-37078/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-37353 page",
"url": "https://www.suse.com/security/cve/CVE-2024-37353/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-37354 page",
"url": "https://www.suse.com/security/cve/CVE-2024-37354/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38381 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38381/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38384 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38384/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38385 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38385/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38388 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38388/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38390 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38390/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38391 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38391/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38539 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38539/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38540 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38540/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38541 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38541/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38543 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38543/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38544 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38544/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38545 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38545/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38546 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38546/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38547 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38547/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38548 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38548/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38549 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38549/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38550 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38550/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38551 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38551/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38552 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38552/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38553 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38553/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38554 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38554/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38555 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38555/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38556 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38556/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38557 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38557/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38558 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38558/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38559 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38559/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38560 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38560/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38562 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38562/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38564 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38564/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38565 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38565/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38566 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38566/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38567 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38567/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38568 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38568/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38569 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38569/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38570 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38570/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38571 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38571/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38572 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38572/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38573 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38573/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38575 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38575/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38578 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38578/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38579 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38579/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38580 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38580/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38581 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38581/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38582 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38582/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38583 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38583/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38586 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38586/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38587 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38587/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38588 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38588/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38590 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38590/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38591 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38591/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38592 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38592/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38594 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38594/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38595 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38595/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38597 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38597/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38598 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38598/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38599 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38599/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38600 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38600/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38601 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38601/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38602 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38602/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38603 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38603/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38604 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38604/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38605 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38605/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38608 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38608/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38610 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38610/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38611 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38611/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38615 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38615/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38616 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38616/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38617 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38617/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38618 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38618/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38619 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38619/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38621 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38621/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38622 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38622/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38627 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38627/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38628 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38628/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38629 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38629/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38630 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38630/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38633 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38633/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38634 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38634/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38635 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38635/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38636 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38636/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38659 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38659/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38661 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38661/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38663 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38663/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38664 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38664/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38780 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38780/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39276 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39276/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39277 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39277/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39291 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39291/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39296 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39296/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39301 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39301/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39362 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39362/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39371 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39371/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39463 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39463/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39466 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39466/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39468 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39468/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39469 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39469/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39471 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39471/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39472 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39472/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39473 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39473/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39474 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39474/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39475 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39475/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39479 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39479/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39481 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39481/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39482 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39482/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39487 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39487/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39490 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39490/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39494 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39494/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39496 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39496/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39498 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39498/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39502 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39502/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39504 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39504/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-39507 page",
"url": "https://www.suse.com/security/cve/CVE-2024-39507/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40901 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40901/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40906 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40906/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40908 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40908/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40919 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40919/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40923 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40923/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40925 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40925/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40928 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40928/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40931 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40931/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40935 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40935/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40937 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40937/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40940 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40940/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40947 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40947/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40948 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40948/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40953 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40953/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40960 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40960/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40961 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40961/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40966 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40966/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40970 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40970/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40972 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40972/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40975 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40975/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40979 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40979/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40998 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40998/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40999 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40999/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-41006 page",
"url": "https://www.suse.com/security/cve/CVE-2024-41006/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-41011 page",
"url": "https://www.suse.com/security/cve/CVE-2024-41011/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-41013 page",
"url": "https://www.suse.com/security/cve/CVE-2024-41013/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-41014 page",
"url": "https://www.suse.com/security/cve/CVE-2024-41014/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-41017 page",
"url": "https://www.suse.com/security/cve/CVE-2024-41017/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-41090 page",
"url": "https://www.suse.com/security/cve/CVE-2024-41090/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-41091 page",
"url": "https://www.suse.com/security/cve/CVE-2024-41091/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2024-08-13T14:09:50Z",
"generator": {
"date": "2024-08-13T14:09:50Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:2896-1",
"initial_release_date": "2024-08-13T14:09:50Z",
"revision_history": [
{
"date": "2024-08-13T14:09:50Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"product": {
"name": "cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"product_id": "cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"product": {
"name": "dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"product_id": "dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"product": {
"name": "gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"product_id": "gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-azure-6.4.0-150600.8.8.2.aarch64",
"product": {
"name": "kernel-azure-6.4.0-150600.8.8.2.aarch64",
"product_id": "kernel-azure-6.4.0-150600.8.8.2.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"product": {
"name": "kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"product_id": "kernel-azure-devel-6.4.0-150600.8.8.2.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"product": {
"name": "kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"product_id": "kernel-azure-extra-6.4.0-150600.8.8.2.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"product": {
"name": "kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"product_id": "kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"product": {
"name": "kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"product_id": "kernel-azure-optional-6.4.0-150600.8.8.2.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"product": {
"name": "kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"product_id": "kernel-syms-azure-6.4.0-150600.8.8.1.aarch64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"product": {
"name": "kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"product_id": "kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"product": {
"name": "ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"product_id": "ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"product": {
"name": "reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"product_id": "reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"product": {
"name": "kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"product_id": "kernel-devel-azure-6.4.0-150600.8.8.2.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"product": {
"name": "kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"product_id": "kernel-source-azure-6.4.0-150600.8.8.2.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"product": {
"name": "cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"product_id": "cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"product": {
"name": "dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"product_id": "dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"product": {
"name": "gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"product_id": "gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-6.4.0-150600.8.8.2.x86_64",
"product": {
"name": "kernel-azure-6.4.0-150600.8.8.2.x86_64",
"product_id": "kernel-azure-6.4.0-150600.8.8.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"product": {
"name": "kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"product_id": "kernel-azure-devel-6.4.0-150600.8.8.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"product": {
"name": "kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"product_id": "kernel-azure-extra-6.4.0-150600.8.8.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"product": {
"name": "kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"product_id": "kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"product": {
"name": "kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"product_id": "kernel-azure-optional-6.4.0-150600.8.8.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"product": {
"name": "kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"product_id": "kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"product": {
"name": "kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"product_id": "kernel-syms-azure-6.4.0-150600.8.8.1.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"product": {
"name": "kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"product_id": "kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"product": {
"name": "ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"product_id": "ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"product": {
"name": "reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"product_id": "reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Public Cloud 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Module for Public Cloud 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp6"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.6",
"product": {
"name": "openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-6.4.0-150600.8.8.2.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64"
},
"product_reference": "kernel-azure-6.4.0-150600.8.8.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-6.4.0-150600.8.8.2.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64"
},
"product_reference": "kernel-azure-6.4.0-150600.8.8.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-6.4.0-150600.8.8.2.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64"
},
"product_reference": "kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-6.4.0-150600.8.8.2.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64"
},
"product_reference": "kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-azure-6.4.0-150600.8.8.2.noarch as component of SUSE Linux Enterprise Module for Public Cloud 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch"
},
"product_reference": "kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-azure-6.4.0-150600.8.8.2.noarch as component of SUSE Linux Enterprise Module for Public Cloud 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch"
},
"product_reference": "kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-azure-6.4.0-150600.8.8.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64"
},
"product_reference": "kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-azure-6.4.0-150600.8.8.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64"
},
"product_reference": "kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64"
},
"product_reference": "cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64"
},
"product_reference": "cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64"
},
"product_reference": "dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64"
},
"product_reference": "dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64"
},
"product_reference": "gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64"
},
"product_reference": "gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-6.4.0-150600.8.8.2.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64"
},
"product_reference": "kernel-azure-6.4.0-150600.8.8.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-6.4.0-150600.8.8.2.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64"
},
"product_reference": "kernel-azure-6.4.0-150600.8.8.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-6.4.0-150600.8.8.2.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64"
},
"product_reference": "kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-6.4.0-150600.8.8.2.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64"
},
"product_reference": "kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-extra-6.4.0-150600.8.8.2.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64"
},
"product_reference": "kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-extra-6.4.0-150600.8.8.2.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64"
},
"product_reference": "kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64"
},
"product_reference": "kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64"
},
"product_reference": "kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-optional-6.4.0-150600.8.8.2.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64"
},
"product_reference": "kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-optional-6.4.0-150600.8.8.2.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64"
},
"product_reference": "kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64"
},
"product_reference": "kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-azure-6.4.0-150600.8.8.2.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch"
},
"product_reference": "kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-azure-6.4.0-150600.8.8.2.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch"
},
"product_reference": "kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-azure-6.4.0-150600.8.8.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64"
},
"product_reference": "kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-azure-6.4.0-150600.8.8.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64"
},
"product_reference": "kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64"
},
"product_reference": "kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64"
},
"product_reference": "kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64"
},
"product_reference": "ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64"
},
"product_reference": "ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64"
},
"product_reference": "reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
},
"product_reference": "reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-47432",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47432"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlib/generic-radix-tree.c: Don\u0027t overflow in peek()\n\nWhen we started spreading new inode numbers throughout most of the 64\nbit inode space, that triggered some corner case bugs, in particular\nsome integer overflows related to the radix tree code. Oops.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47432",
"url": "https://www.suse.com/security/cve/CVE-2021-47432"
},
{
"category": "external",
"summary": "SUSE Bug 1225391 for CVE-2021-47432",
"url": "https://bugzilla.suse.com/1225391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2021-47432"
},
{
"cve": "CVE-2022-48772",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-48772"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: lgdt3306a: Add a check against null-pointer-def\n\nThe driver should check whether the client provides the platform_data.\n\nThe following log reveals it:\n\n[ 29.610324] BUG: KASAN: null-ptr-deref in kmemdup+0x30/0x40\n[ 29.610730] Read of size 40 at addr 0000000000000000 by task bash/414\n[ 29.612820] Call Trace:\n[ 29.613030] \u003cTASK\u003e\n[ 29.613201] dump_stack_lvl+0x56/0x6f\n[ 29.613496] ? kmemdup+0x30/0x40\n[ 29.613754] print_report.cold+0x494/0x6b7\n[ 29.614082] ? kmemdup+0x30/0x40\n[ 29.614340] kasan_report+0x8a/0x190\n[ 29.614628] ? kmemdup+0x30/0x40\n[ 29.614888] kasan_check_range+0x14d/0x1d0\n[ 29.615213] memcpy+0x20/0x60\n[ 29.615454] kmemdup+0x30/0x40\n[ 29.615700] lgdt3306a_probe+0x52/0x310\n[ 29.616339] i2c_device_probe+0x951/0xa90",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-48772",
"url": "https://www.suse.com/security/cve/CVE-2022-48772"
},
{
"category": "external",
"summary": "SUSE Bug 1226976 for CVE-2022-48772",
"url": "https://bugzilla.suse.com/1226976"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2022-48772"
},
{
"cve": "CVE-2023-38417",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-38417"
}
],
"notes": [
{
"category": "general",
"text": "Improper input validation for some Intel(R) PROSet/Wireless WiFi software before version 23.20 may allow an unauthenticated user to potentially enable denial of service via adjacent access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-38417",
"url": "https://www.suse.com/security/cve/CVE-2023-38417"
},
{
"category": "external",
"summary": "SUSE Bug 1225600 for CVE-2023-38417",
"url": "https://bugzilla.suse.com/1225600"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-38417"
},
{
"cve": "CVE-2023-47210",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-47210"
}
],
"notes": [
{
"category": "general",
"text": "Improper input validation for some Intel(R) PROSet/Wireless WiFi software for linux before version 23.20 may allow an unauthenticated user to potentially enable denial of service via adjacent access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-47210",
"url": "https://www.suse.com/security/cve/CVE-2023-47210"
},
{
"category": "external",
"summary": "SUSE Bug 1225601 for CVE-2023-47210",
"url": "https://bugzilla.suse.com/1225601"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-47210"
},
{
"cve": "CVE-2023-51780",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-51780"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in the Linux kernel before 6.6.8. do_vcc_ioctl in net/atm/ioctl.c has a use-after-free because of a vcc_recvmsg race condition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-51780",
"url": "https://www.suse.com/security/cve/CVE-2023-51780"
},
{
"category": "external",
"summary": "SUSE Bug 1218730 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1218730"
},
{
"category": "external",
"summary": "SUSE Bug 1218733 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1218733"
},
{
"category": "external",
"summary": "SUSE Bug 1220191 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1220191"
},
{
"category": "external",
"summary": "SUSE Bug 1221578 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1221578"
},
{
"category": "external",
"summary": "SUSE Bug 1221598 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1221598"
},
{
"category": "external",
"summary": "SUSE Bug 1224298 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1224298"
},
{
"category": "external",
"summary": "SUSE Bug 1224878 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1224878"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "important"
}
],
"title": "CVE-2023-51780"
},
{
"cve": "CVE-2023-52435",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52435"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: prevent mss overflow in skb_segment()\n\nOnce again syzbot is able to crash the kernel in skb_segment() [1]\n\nGSO_BY_FRAGS is a forbidden value, but unfortunately the following\ncomputation in skb_segment() can reach it quite easily :\n\n\tmss = mss * partial_segs;\n\n65535 = 3 * 5 * 17 * 257, so many initial values of mss can lead to\na bad final result.\n\nMake sure to limit segmentation so that the new mss value is smaller\nthan GSO_BY_FRAGS.\n\n[1]\n\ngeneral protection fault, probably for non-canonical address 0xdffffc000000000e: 0000 [#1] PREEMPT SMP KASAN\nKASAN: null-ptr-deref in range [0x0000000000000070-0x0000000000000077]\nCPU: 1 PID: 5079 Comm: syz-executor993 Not tainted 6.7.0-rc4-syzkaller-00141-g1ae4cd3cbdd0 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023\nRIP: 0010:skb_segment+0x181d/0x3f30 net/core/skbuff.c:4551\nCode: 83 e3 02 e9 fb ed ff ff e8 90 68 1c f9 48 8b 84 24 f8 00 00 00 48 8d 78 70 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 \u003c0f\u003e b6 04 02 84 c0 74 08 3c 03 0f 8e 8a 21 00 00 48 8b 84 24 f8 00\nRSP: 0018:ffffc900043473d0 EFLAGS: 00010202\nRAX: dffffc0000000000 RBX: 0000000000010046 RCX: ffffffff886b1597\nRDX: 000000000000000e RSI: ffffffff886b2520 RDI: 0000000000000070\nRBP: ffffc90004347578 R08: 0000000000000005 R09: 000000000000ffff\nR10: 000000000000ffff R11: 0000000000000002 R12: ffff888063202ac0\nR13: 0000000000010000 R14: 000000000000ffff R15: 0000000000000046\nFS: 0000555556e7e380(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000020010000 CR3: 0000000027ee2000 CR4: 00000000003506f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n\u003cTASK\u003e\nudp6_ufo_fragment+0xa0e/0xd00 net/ipv6/udp_offload.c:109\nipv6_gso_segment+0x534/0x17e0 net/ipv6/ip6_offload.c:120\nskb_mac_gso_segment+0x290/0x610 net/core/gso.c:53\n__skb_gso_segment+0x339/0x710 net/core/gso.c:124\nskb_gso_segment include/net/gso.h:83 [inline]\nvalidate_xmit_skb+0x36c/0xeb0 net/core/dev.c:3626\n__dev_queue_xmit+0x6f3/0x3d60 net/core/dev.c:4338\ndev_queue_xmit include/linux/netdevice.h:3134 [inline]\npacket_xmit+0x257/0x380 net/packet/af_packet.c:276\npacket_snd net/packet/af_packet.c:3087 [inline]\npacket_sendmsg+0x24c6/0x5220 net/packet/af_packet.c:3119\nsock_sendmsg_nosec net/socket.c:730 [inline]\n__sock_sendmsg+0xd5/0x180 net/socket.c:745\n__sys_sendto+0x255/0x340 net/socket.c:2190\n__do_sys_sendto net/socket.c:2202 [inline]\n__se_sys_sendto net/socket.c:2198 [inline]\n__x64_sys_sendto+0xe0/0x1b0 net/socket.c:2198\ndo_syscall_x64 arch/x86/entry/common.c:52 [inline]\ndo_syscall_64+0x40/0x110 arch/x86/entry/common.c:83\nentry_SYSCALL_64_after_hwframe+0x63/0x6b\nRIP: 0033:0x7f8692032aa9\nCode: 28 00 00 00 75 05 48 83 c4 28 c3 e8 d1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007fff8d685418 EFLAGS: 00000246 ORIG_RAX: 000000000000002c\nRAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f8692032aa9\nRDX: 0000000000010048 RSI: 00000000200000c0 RDI: 0000000000000003\nRBP: 00000000000f4240 R08: 0000000020000540 R09: 0000000000000014\nR10: 0000000000000000 R11: 0000000000000246 R12: 00007fff8d685480\nR13: 0000000000000001 R14: 00007fff8d685480 R15: 0000000000000003\n\u003c/TASK\u003e\nModules linked in:\n---[ end trace 0000000000000000 ]---\nRIP: 0010:skb_segment+0x181d/0x3f30 net/core/skbuff.c:4551\nCode: 83 e3 02 e9 fb ed ff ff e8 90 68 1c f9 48 8b 84 24 f8 00 00 00 48 8d 78 70 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 \u003c0f\u003e b6 04 02 84 c0 74 08 3c 03 0f 8e 8a 21 00 00 48 8b 84 24 f8 00\nRSP: 0018:ffffc900043473d0 EFLAGS: 00010202\nRAX: dffffc0000000000 RBX: 0000000000010046 RCX: ffffffff886b1597\nRDX: 000000000000000e RSI: ffffffff886b2520 RDI: 0000000000000070\nRBP: ffffc90004347578 R0\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52435",
"url": "https://www.suse.com/security/cve/CVE-2023-52435"
},
{
"category": "external",
"summary": "SUSE Bug 1220138 for CVE-2023-52435",
"url": "https://bugzilla.suse.com/1220138"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52435"
},
{
"cve": "CVE-2023-52472",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52472"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: rsa - add a check for allocation failure\n\nStatic checkers insist that the mpi_alloc() allocation can fail so add\na check to prevent a NULL dereference. Small allocations like this\ncan\u0027t actually fail in current kernels, but adding a check is very\nsimple and makes the static checkers happy.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52472",
"url": "https://www.suse.com/security/cve/CVE-2023-52472"
},
{
"category": "external",
"summary": "SUSE Bug 1220427 for CVE-2023-52472",
"url": "https://bugzilla.suse.com/1220427"
},
{
"category": "external",
"summary": "SUSE Bug 1220430 for CVE-2023-52472",
"url": "https://bugzilla.suse.com/1220430"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "low"
}
],
"title": "CVE-2023-52472"
},
{
"cve": "CVE-2023-52622",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52622"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: avoid online resizing failures due to oversized flex bg\n\nWhen we online resize an ext4 filesystem with a oversized flexbg_size,\n\n mkfs.ext4 -F -G 67108864 $dev -b 4096 100M\n mount $dev $dir\n resize2fs $dev 16G\n\nthe following WARN_ON is triggered:\n==================================================================\nWARNING: CPU: 0 PID: 427 at mm/page_alloc.c:4402 __alloc_pages+0x411/0x550\nModules linked in: sg(E)\nCPU: 0 PID: 427 Comm: resize2fs Tainted: G E 6.6.0-rc5+ #314\nRIP: 0010:__alloc_pages+0x411/0x550\nCall Trace:\n \u003cTASK\u003e\n __kmalloc_large_node+0xa2/0x200\n __kmalloc+0x16e/0x290\n ext4_resize_fs+0x481/0xd80\n __ext4_ioctl+0x1616/0x1d90\n ext4_ioctl+0x12/0x20\n __x64_sys_ioctl+0xf0/0x150\n do_syscall_64+0x3b/0x90\n==================================================================\n\nThis is because flexbg_size is too large and the size of the new_group_data\narray to be allocated exceeds MAX_ORDER. Currently, the minimum value of\nMAX_ORDER is 8, the minimum value of PAGE_SIZE is 4096, the corresponding\nmaximum number of groups that can be allocated is:\n\n (PAGE_SIZE \u003c\u003c MAX_ORDER) / sizeof(struct ext4_new_group_data) ~ 21845\n\nAnd the value that is down-aligned to the power of 2 is 16384. Therefore,\nthis value is defined as MAX_RESIZE_BG, and the number of groups added\neach time does not exceed this value during resizing, and is added multiple\ntimes to complete the online resizing. The difference is that the metadata\nin a flex_bg may be more dispersed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52622",
"url": "https://www.suse.com/security/cve/CVE-2023-52622"
},
{
"category": "external",
"summary": "SUSE Bug 1222080 for CVE-2023-52622",
"url": "https://bugzilla.suse.com/1222080"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52622"
},
{
"cve": "CVE-2023-52656",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52656"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring: drop any code related to SCM_RIGHTS\n\nThis is dead code after we dropped support for passing io_uring fds\nover SCM_RIGHTS, get rid of it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52656",
"url": "https://www.suse.com/security/cve/CVE-2023-52656"
},
{
"category": "external",
"summary": "SUSE Bug 1224187 for CVE-2023-52656",
"url": "https://bugzilla.suse.com/1224187"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "low"
}
],
"title": "CVE-2023-52656"
},
{
"cve": "CVE-2023-52672",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52672"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npipe: wakeup wr_wait after setting max_usage\n\nCommit c73be61cede5 (\"pipe: Add general notification queue support\") a\nregression was introduced that would lock up resized pipes under certain\nconditions. See the reproducer in [1].\n\nThe commit resizing the pipe ring size was moved to a different\nfunction, doing that moved the wakeup for pipe-\u003ewr_wait before actually\nraising pipe-\u003emax_usage. If a pipe was full before the resize occured it\nwould result in the wakeup never actually triggering pipe_write.\n\nSet @max_usage and @nr_accounted before waking writers if this isn\u0027t a\nwatch queue.\n\n[Christian Brauner \u003cbrauner@kernel.org\u003e: rewrite to account for watch queues]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52672",
"url": "https://www.suse.com/security/cve/CVE-2023-52672"
},
{
"category": "external",
"summary": "SUSE Bug 1224614 for CVE-2023-52672",
"url": "https://bugzilla.suse.com/1224614"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52672"
},
{
"cve": "CVE-2023-52699",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52699"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsysv: don\u0027t call sb_bread() with pointers_lock held\n\nsyzbot is reporting sleep in atomic context in SysV filesystem [1], for\nsb_bread() is called with rw_spinlock held.\n\nA \"write_lock(\u0026pointers_lock) =\u003e read_lock(\u0026pointers_lock) deadlock\" bug\nand a \"sb_bread() with write_lock(\u0026pointers_lock)\" bug were introduced by\n\"Replace BKL for chain locking with sysvfs-private rwlock\" in Linux 2.5.12.\n\nThen, \"[PATCH] err1-40: sysvfs locking fix\" in Linux 2.6.8 fixed the\nformer bug by moving pointers_lock lock to the callers, but instead\nintroduced a \"sb_bread() with read_lock(\u0026pointers_lock)\" bug (which made\nthis problem easier to hit).\n\nAl Viro suggested that why not to do like get_branch()/get_block()/\nfind_shared() in Minix filesystem does. And doing like that is almost a\nrevert of \"[PATCH] err1-40: sysvfs locking fix\" except that get_branch()\n from with find_shared() is called without write_lock(\u0026pointers_lock).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52699",
"url": "https://www.suse.com/security/cve/CVE-2023-52699"
},
{
"category": "external",
"summary": "SUSE Bug 1224659 for CVE-2023-52699",
"url": "https://bugzilla.suse.com/1224659"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52699"
},
{
"cve": "CVE-2023-52735",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52735"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf, sockmap: Don\u0027t let sock_map_{close,destroy,unhash} call itself\n\nsock_map proto callbacks should never call themselves by design. Protect\nagainst bugs like [1] and break out of the recursive loop to avoid a stack\noverflow in favor of a resource leak.\n\n[1] https://lore.kernel.org/all/00000000000073b14905ef2e7401@google.com/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52735",
"url": "https://www.suse.com/security/cve/CVE-2023-52735"
},
{
"category": "external",
"summary": "SUSE Bug 1225475 for CVE-2023-52735",
"url": "https://bugzilla.suse.com/1225475"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52735"
},
{
"cve": "CVE-2023-52749",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52749"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: Fix null dereference on suspend\n\nA race condition exists where a synchronous (noqueue) transfer can be\nactive during a system suspend. This can cause a null pointer\ndereference exception to occur when the system resumes.\n\nExample order of events leading to the exception:\n1. spi_sync() calls __spi_transfer_message_noqueue() which sets\n ctlr-\u003ecur_msg\n2. Spi transfer begins via spi_transfer_one_message()\n3. System is suspended interrupting the transfer context\n4. System is resumed\n6. spi_controller_resume() calls spi_start_queue() which resets cur_msg\n to NULL\n7. Spi transfer context resumes and spi_finalize_current_message() is\n called which dereferences cur_msg (which is now NULL)\n\nWait for synchronous transfers to complete before suspending by\nacquiring the bus mutex and setting/checking a suspend flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52749",
"url": "https://www.suse.com/security/cve/CVE-2023-52749"
},
{
"category": "external",
"summary": "SUSE Bug 1225476 for CVE-2023-52749",
"url": "https://bugzilla.suse.com/1225476"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52749"
},
{
"cve": "CVE-2023-52750",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52750"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: Restrict CPU_BIG_ENDIAN to GNU as or LLVM IAS 15.x or newer\n\nPrior to LLVM 15.0.0, LLVM\u0027s integrated assembler would incorrectly\nbyte-swap NOP when compiling for big-endian, and the resulting series of\nbytes happened to match the encoding of FNMADD S21, S30, S0, S0.\n\nThis went unnoticed until commit:\n\n 34f66c4c4d5518c1 (\"arm64: Use a positive cpucap for FP/SIMD\")\n\nPrior to that commit, the kernel would always enable the use of FPSIMD\nearly in boot when __cpu_setup() initialized CPACR_EL1, and so usage of\nFNMADD within the kernel was not detected, but could result in the\ncorruption of user or kernel FPSIMD state.\n\nAfter that commit, the instructions happen to trap during boot prior to\nFPSIMD being detected and enabled, e.g.\n\n| Unhandled 64-bit el1h sync exception on CPU0, ESR 0x000000001fe00000 -- ASIMD\n| CPU: 0 PID: 0 Comm: swapper Not tainted 6.6.0-rc3-00013-g34f66c4c4d55 #1\n| Hardware name: linux,dummy-virt (DT)\n| pstate: 400000c9 (nZcv daIF -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n| pc : __pi_strcmp+0x1c/0x150\n| lr : populate_properties+0xe4/0x254\n| sp : ffffd014173d3ad0\n| x29: ffffd014173d3af0 x28: fffffbfffddffcb8 x27: 0000000000000000\n| x26: 0000000000000058 x25: fffffbfffddfe054 x24: 0000000000000008\n| x23: fffffbfffddfe000 x22: fffffbfffddfe000 x21: fffffbfffddfe044\n| x20: ffffd014173d3b70 x19: 0000000000000001 x18: 0000000000000005\n| x17: 0000000000000010 x16: 0000000000000000 x15: 00000000413e7000\n| x14: 0000000000000000 x13: 0000000000001bcc x12: 0000000000000000\n| x11: 00000000d00dfeed x10: ffffd414193f2cd0 x9 : 0000000000000000\n| x8 : 0101010101010101 x7 : ffffffffffffffc0 x6 : 0000000000000000\n| x5 : 0000000000000000 x4 : 0101010101010101 x3 : 000000000000002a\n| x2 : 0000000000000001 x1 : ffffd014171f2988 x0 : fffffbfffddffcb8\n| Kernel panic - not syncing: Unhandled exception\n| CPU: 0 PID: 0 Comm: swapper Not tainted 6.6.0-rc3-00013-g34f66c4c4d55 #1\n| Hardware name: linux,dummy-virt (DT)\n| Call trace:\n| dump_backtrace+0xec/0x108\n| show_stack+0x18/0x2c\n| dump_stack_lvl+0x50/0x68\n| dump_stack+0x18/0x24\n| panic+0x13c/0x340\n| el1t_64_irq_handler+0x0/0x1c\n| el1_abort+0x0/0x5c\n| el1h_64_sync+0x64/0x68\n| __pi_strcmp+0x1c/0x150\n| unflatten_dt_nodes+0x1e8/0x2d8\n| __unflatten_device_tree+0x5c/0x15c\n| unflatten_device_tree+0x38/0x50\n| setup_arch+0x164/0x1e0\n| start_kernel+0x64/0x38c\n| __primary_switched+0xbc/0xc4\n\nRestrict CONFIG_CPU_BIG_ENDIAN to a known good assembler, which is\neither GNU as or LLVM\u0027s IAS 15.0.0 and newer, which contains the linked\ncommit.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52750",
"url": "https://www.suse.com/security/cve/CVE-2023-52750"
},
{
"category": "external",
"summary": "SUSE Bug 1225485 for CVE-2023-52750",
"url": "https://bugzilla.suse.com/1225485"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52750"
},
{
"cve": "CVE-2023-52751",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52751"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix use-after-free in smb2_query_info_compound()\n\nThe following UAF was triggered when running fstests generic/072 with\nKASAN enabled against Windows Server 2022 and mount options\n\u0027multichannel,max_channels=2,vers=3.1.1,mfsymlinks,noperm\u0027\n\n BUG: KASAN: slab-use-after-free in smb2_query_info_compound+0x423/0x6d0 [cifs]\n Read of size 8 at addr ffff888014941048 by task xfs_io/27534\n\n CPU: 0 PID: 27534 Comm: xfs_io Not tainted 6.6.0-rc7 #1\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS\n rel-1.16.2-3-gd478f380-rebuilt.opensuse.org 04/01/2014\n Call Trace:\n dump_stack_lvl+0x4a/0x80\n print_report+0xcf/0x650\n ? srso_alias_return_thunk+0x5/0x7f\n ? srso_alias_return_thunk+0x5/0x7f\n ? __phys_addr+0x46/0x90\n kasan_report+0xda/0x110\n ? smb2_query_info_compound+0x423/0x6d0 [cifs]\n ? smb2_query_info_compound+0x423/0x6d0 [cifs]\n smb2_query_info_compound+0x423/0x6d0 [cifs]\n ? __pfx_smb2_query_info_compound+0x10/0x10 [cifs]\n ? srso_alias_return_thunk+0x5/0x7f\n ? __stack_depot_save+0x39/0x480\n ? kasan_save_stack+0x33/0x60\n ? kasan_set_track+0x25/0x30\n ? ____kasan_slab_free+0x126/0x170\n smb2_queryfs+0xc2/0x2c0 [cifs]\n ? __pfx_smb2_queryfs+0x10/0x10 [cifs]\n ? __pfx___lock_acquire+0x10/0x10\n smb311_queryfs+0x210/0x220 [cifs]\n ? __pfx_smb311_queryfs+0x10/0x10 [cifs]\n ? srso_alias_return_thunk+0x5/0x7f\n ? __lock_acquire+0x480/0x26c0\n ? lock_release+0x1ed/0x640\n ? srso_alias_return_thunk+0x5/0x7f\n ? do_raw_spin_unlock+0x9b/0x100\n cifs_statfs+0x18c/0x4b0 [cifs]\n statfs_by_dentry+0x9b/0xf0\n fd_statfs+0x4e/0xb0\n __do_sys_fstatfs+0x7f/0xe0\n ? __pfx___do_sys_fstatfs+0x10/0x10\n ? srso_alias_return_thunk+0x5/0x7f\n ? lockdep_hardirqs_on_prepare+0x136/0x200\n ? srso_alias_return_thunk+0x5/0x7f\n do_syscall_64+0x3f/0x90\n entry_SYSCALL_64_after_hwframe+0x6e/0xd8\n\n Allocated by task 27534:\n kasan_save_stack+0x33/0x60\n kasan_set_track+0x25/0x30\n __kasan_kmalloc+0x8f/0xa0\n open_cached_dir+0x71b/0x1240 [cifs]\n smb2_query_info_compound+0x5c3/0x6d0 [cifs]\n smb2_queryfs+0xc2/0x2c0 [cifs]\n smb311_queryfs+0x210/0x220 [cifs]\n cifs_statfs+0x18c/0x4b0 [cifs]\n statfs_by_dentry+0x9b/0xf0\n fd_statfs+0x4e/0xb0\n __do_sys_fstatfs+0x7f/0xe0\n do_syscall_64+0x3f/0x90\n entry_SYSCALL_64_after_hwframe+0x6e/0xd8\n\n Freed by task 27534:\n kasan_save_stack+0x33/0x60\n kasan_set_track+0x25/0x30\n kasan_save_free_info+0x2b/0x50\n ____kasan_slab_free+0x126/0x170\n slab_free_freelist_hook+0xd0/0x1e0\n __kmem_cache_free+0x9d/0x1b0\n open_cached_dir+0xff5/0x1240 [cifs]\n smb2_query_info_compound+0x5c3/0x6d0 [cifs]\n smb2_queryfs+0xc2/0x2c0 [cifs]\n\nThis is a race between open_cached_dir() and cached_dir_lease_break()\nwhere the cache entry for the open directory handle receives a lease\nbreak while creating it. And before returning from open_cached_dir(),\nwe put the last reference of the new @cfid because of\n!@cfid-\u003ehas_lease.\n\nBesides the UAF, while running xfstests a lot of missed lease breaks\nhave been noticed in tests that run several concurrent statfs(2) calls\non those cached fids\n\n CIFS: VFS: \\\\w22-root1.gandalf.test No task to wake, unknown frame...\n CIFS: VFS: \\\\w22-root1.gandalf.test Cmd: 18 Err: 0x0 Flags: 0x1...\n CIFS: VFS: \\\\w22-root1.gandalf.test smb buf 00000000715bfe83 len 108\n CIFS: VFS: Dump pending requests:\n CIFS: VFS: \\\\w22-root1.gandalf.test No task to wake, unknown frame...\n CIFS: VFS: \\\\w22-root1.gandalf.test Cmd: 18 Err: 0x0 Flags: 0x1...\n CIFS: VFS: \\\\w22-root1.gandalf.test smb buf 000000005aa7316e len 108\n ...\n\nTo fix both, in open_cached_dir() ensure that @cfid-\u003ehas_lease is set\nright before sending out compounded request so that any potential\nlease break will be get processed by demultiplex thread while we\u0027re\nstill caching @cfid. And, if open failed for some reason, re-check\n@cfid-\u003ehas_lease to decide whether or not put lease reference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52751",
"url": "https://www.suse.com/security/cve/CVE-2023-52751"
},
{
"category": "external",
"summary": "SUSE Bug 1225489 for CVE-2023-52751",
"url": "https://bugzilla.suse.com/1225489"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52751"
},
{
"cve": "CVE-2023-52753",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52753"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Avoid NULL dereference of timing generator\n\n[Why \u0026 How]\nCheck whether assigned timing generator is NULL or not before\naccessing its funcs to prevent NULL dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52753",
"url": "https://www.suse.com/security/cve/CVE-2023-52753"
},
{
"category": "external",
"summary": "SUSE Bug 1225478 for CVE-2023-52753",
"url": "https://bugzilla.suse.com/1225478"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52753"
},
{
"cve": "CVE-2023-52754",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52754"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: imon: fix access to invalid resource for the second interface\n\nimon driver probes two USB interfaces, and at the probe of the second\ninterface, the driver assumes blindly that the first interface got\nbound with the same imon driver. It\u0027s usually true, but it\u0027s still\npossible that the first interface is bound with another driver via a\nmalformed descriptor. Then it may lead to a memory corruption, as\nspotted by syzkaller; imon driver accesses the data from drvdata as\nstruct imon_context object although it\u0027s a completely different one\nthat was assigned by another driver.\n\nThis patch adds a sanity check -- whether the first interface is\nreally bound with the imon driver or not -- for avoiding the problem\nabove at the probe time.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52754",
"url": "https://www.suse.com/security/cve/CVE-2023-52754"
},
{
"category": "external",
"summary": "SUSE Bug 1225490 for CVE-2023-52754",
"url": "https://bugzilla.suse.com/1225490"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52754"
},
{
"cve": "CVE-2023-52757",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52757"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix potential deadlock when releasing mids\n\nAll release_mid() callers seem to hold a reference of @mid so there is\nno need to call kref_put(\u0026mid-\u003erefcount, __release_mid) under\n@server-\u003emid_lock spinlock. If they don\u0027t, then an use-after-free bug\nwould have occurred anyways.\n\nBy getting rid of such spinlock also fixes a potential deadlock as\nshown below\n\nCPU 0 CPU 1\n------------------------------------------------------------------\ncifs_demultiplex_thread() cifs_debug_data_proc_show()\n release_mid()\n spin_lock(\u0026server-\u003emid_lock);\n spin_lock(\u0026cifs_tcp_ses_lock)\n\t\t\t\t spin_lock(\u0026server-\u003emid_lock)\n __release_mid()\n smb2_find_smb_tcon()\n spin_lock(\u0026cifs_tcp_ses_lock) *deadlock*",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52757",
"url": "https://www.suse.com/security/cve/CVE-2023-52757"
},
{
"category": "external",
"summary": "SUSE Bug 1225548 for CVE-2023-52757",
"url": "https://bugzilla.suse.com/1225548"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52757"
},
{
"cve": "CVE-2023-52759",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52759"
}
],
"notes": [
{
"category": "general",
"text": "** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52759",
"url": "https://www.suse.com/security/cve/CVE-2023-52759"
},
{
"category": "external",
"summary": "SUSE Bug 1225560 for CVE-2023-52759",
"url": "https://bugzilla.suse.com/1225560"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52759"
},
{
"cve": "CVE-2023-52762",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52762"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio-blk: fix implicit overflow on virtio_max_dma_size\n\nThe following codes have an implicit conversion from size_t to u32:\n(u32)max_size = (size_t)virtio_max_dma_size(vdev);\n\nThis may lead overflow, Ex (size_t)4G -\u003e (u32)0. Once\nvirtio_max_dma_size() has a larger size than U32_MAX, use U32_MAX\ninstead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52762",
"url": "https://www.suse.com/security/cve/CVE-2023-52762"
},
{
"category": "external",
"summary": "SUSE Bug 1225573 for CVE-2023-52762",
"url": "https://bugzilla.suse.com/1225573"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52762"
},
{
"cve": "CVE-2023-52763",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52763"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni3c: master: mipi-i3c-hci: Fix a kernel panic for accessing DAT_data.\n\nThe `i3c_master_bus_init` function may attach the I2C devices before the\nI3C bus initialization. In this flow, the DAT `alloc_entry`` will be used\nbefore the DAT `init`. Additionally, if the `i3c_master_bus_init` fails,\nthe DAT `cleanup` will execute before the device is detached, which will\nexecue DAT `free_entry` function. The above scenario can cause the driver\nto use DAT_data when it is NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52763",
"url": "https://www.suse.com/security/cve/CVE-2023-52763"
},
{
"category": "external",
"summary": "SUSE Bug 1225570 for CVE-2023-52763",
"url": "https://bugzilla.suse.com/1225570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52763"
},
{
"cve": "CVE-2023-52764",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52764"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: gspca: cpia1: shift-out-of-bounds in set_flicker\n\nSyzkaller reported the following issue:\nUBSAN: shift-out-of-bounds in drivers/media/usb/gspca/cpia1.c:1031:27\nshift exponent 245 is too large for 32-bit type \u0027int\u0027\n\nWhen the value of the variable \"sd-\u003eparams.exposure.gain\" exceeds the\nnumber of bits in an integer, a shift-out-of-bounds error is reported. It\nis triggered because the variable \"currentexp\" cannot be left-shifted by\nmore than the number of bits in an integer. In order to avoid invalid\nrange during left-shift, the conditional expression is added.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52764",
"url": "https://www.suse.com/security/cve/CVE-2023-52764"
},
{
"category": "external",
"summary": "SUSE Bug 1225571 for CVE-2023-52764",
"url": "https://bugzilla.suse.com/1225571"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52764"
},
{
"cve": "CVE-2023-52765",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52765"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmfd: qcom-spmi-pmic: Fix revid implementation\n\nThe Qualcomm SPMI PMIC revid implementation is broken in multiple ways.\n\nFirst, it assumes that just because the sibling base device has been\nregistered that means that it is also bound to a driver, which may not\nbe the case (e.g. due to probe deferral or asynchronous probe). This\ncould trigger a NULL-pointer dereference when attempting to access the\ndriver data of the unbound device.\n\nSecond, it accesses driver data of a sibling device directly and without\nany locking, which means that the driver data may be freed while it is\nbeing accessed (e.g. on driver unbind).\n\nThird, it leaks a struct device reference to the sibling device which is\nlooked up using the spmi_device_from_of() every time a function (child)\ndevice is calling the revid function (e.g. on probe).\n\nFix this mess by reimplementing the revid lookup so that it is done only\nat probe of the PMIC device; the base device fetches the revid info from\nthe hardware, while any secondary SPMI device fetches the information\nfrom the base device and caches it so that it can be accessed safely\nfrom its children. If the base device has not been probed yet then probe\nof a secondary device is deferred.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52765",
"url": "https://www.suse.com/security/cve/CVE-2023-52765"
},
{
"category": "external",
"summary": "SUSE Bug 1225029 for CVE-2023-52765",
"url": "https://bugzilla.suse.com/1225029"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52765"
},
{
"cve": "CVE-2023-52766",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52766"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni3c: mipi-i3c-hci: Fix out of bounds access in hci_dma_irq_handler\n\nDo not loop over ring headers in hci_dma_irq_handler() that are not\nallocated and enabled in hci_dma_init(). Otherwise out of bounds access\nwill occur from rings-\u003eheaders[i] access when i \u003e= number of allocated\nring headers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52766",
"url": "https://www.suse.com/security/cve/CVE-2023-52766"
},
{
"category": "external",
"summary": "SUSE Bug 1230620 for CVE-2023-52766",
"url": "https://bugzilla.suse.com/1230620"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52766"
},
{
"cve": "CVE-2023-52767",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52767"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntls: fix NULL deref on tls_sw_splice_eof() with empty record\n\nsyzkaller discovered that if tls_sw_splice_eof() is executed as part of\nsendfile() when the plaintext/ciphertext sk_msg are empty, the send path\ngets confused because the empty ciphertext buffer does not have enough\nspace for the encryption overhead. This causes tls_push_record() to go on\nthe `split = true` path (which is only supposed to be used when interacting\nwith an attached BPF program), and then get further confused and hit the\ntls_merge_open_record() path, which then assumes that there must be at\nleast one populated buffer element, leading to a NULL deref.\n\nIt is possible to have empty plaintext/ciphertext buffers if we previously\nbailed from tls_sw_sendmsg_locked() via the tls_trim_both_msgs() path.\ntls_sw_push_pending_record() already handles this case correctly; let\u0027s do\nthe same check in tls_sw_splice_eof().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52767",
"url": "https://www.suse.com/security/cve/CVE-2023-52767"
},
{
"category": "external",
"summary": "SUSE Bug 1224998 for CVE-2023-52767",
"url": "https://bugzilla.suse.com/1224998"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52767"
},
{
"cve": "CVE-2023-52768",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52768"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: wilc1000: use vmm_table as array in wilc struct\n\nEnabling KASAN and running some iperf tests raises some memory issues with\nvmm_table:\n\nBUG: KASAN: slab-out-of-bounds in wilc_wlan_handle_txq+0x6ac/0xdb4\nWrite of size 4 at addr c3a61540 by task wlan0-tx/95\n\nKASAN detects that we are writing data beyond range allocated to vmm_table.\nThere is indeed a mismatch between the size passed to allocator in\nwilc_wlan_init, and the range of possible indexes used later: allocation\nsize is missing a multiplication by sizeof(u32)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52768",
"url": "https://www.suse.com/security/cve/CVE-2023-52768"
},
{
"category": "external",
"summary": "SUSE Bug 1225004 for CVE-2023-52768",
"url": "https://bugzilla.suse.com/1225004"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52768"
},
{
"cve": "CVE-2023-52769",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52769"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix htt mlo-offset event locking\n\nThe ath12k active pdevs are protected by RCU but the htt mlo-offset\nevent handling code calling ath12k_mac_get_ar_by_pdev_id() was not\nmarked as a read-side critical section.\n\nMark the code in question as an RCU read-side critical section to avoid\nany potential use-after-free issues.\n\nCompile tested only.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52769",
"url": "https://www.suse.com/security/cve/CVE-2023-52769"
},
{
"category": "external",
"summary": "SUSE Bug 1225001 for CVE-2023-52769",
"url": "https://bugzilla.suse.com/1225001"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52769"
},
{
"cve": "CVE-2023-52773",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52773"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: fix a NULL pointer dereference in amdgpu_dm_i2c_xfer()\n\nWhen ddc_service_construct() is called, it explicitly checks both the\nlink type and whether there is something on the link which will\ndictate whether the pin is marked as hw_supported.\n\nIf the pin isn\u0027t set or the link is not set (such as from\nunloading/reloading amdgpu in an IGT test) then fail the\namdgpu_dm_i2c_xfer() call.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52773",
"url": "https://www.suse.com/security/cve/CVE-2023-52773"
},
{
"category": "external",
"summary": "SUSE Bug 1225041 for CVE-2023-52773",
"url": "https://bugzilla.suse.com/1225041"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52773"
},
{
"cve": "CVE-2023-52774",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52774"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/dasd: protect device queue against concurrent access\n\nIn dasd_profile_start() the amount of requests on the device queue are\ncounted. The access to the device queue is unprotected against\nconcurrent access. With a lot of parallel I/O, especially with alias\ndevices enabled, the device queue can change while dasd_profile_start()\nis accessing the queue. In the worst case this leads to a kernel panic\ndue to incorrect pointer accesses.\n\nFix this by taking the device lock before accessing the queue and\ncounting the requests. Additionally the check for a valid profile data\npointer can be done earlier to avoid unnecessary locking in a hot path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52774",
"url": "https://www.suse.com/security/cve/CVE-2023-52774"
},
{
"category": "external",
"summary": "SUSE Bug 1225572 for CVE-2023-52774",
"url": "https://bugzilla.suse.com/1225572"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52774"
},
{
"cve": "CVE-2023-52775",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52775"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/smc: avoid data corruption caused by decline\n\nWe found a data corruption issue during testing of SMC-R on Redis\napplications.\n\nThe benchmark has a low probability of reporting a strange error as\nshown below.\n\n\"Error: Protocol error, got \"\\xe2\" as reply type byte\"\n\nFinally, we found that the retrieved error data was as follows:\n\n0xE2 0xD4 0xC3 0xD9 0x04 0x00 0x2C 0x20 0xA6 0x56 0x00 0x16 0x3E 0x0C\n0xCB 0x04 0x02 0x01 0x00 0x00 0x20 0x00 0x00 0x00 0x00 0x00 0x00 0x00\n0x00 0x00 0x00 0x00 0x00 0x00 0x00 0x00 0x00 0x00 0xE2\n\nIt is quite obvious that this is a SMC DECLINE message, which means that\nthe applications received SMC protocol message.\nWe found that this was caused by the following situations:\n\nclient server\n | clc proposal\n -------------\u003e\n | clc accept\n \u003c-------------\n | clc confirm\n -------------\u003e\nwait llc confirm\n\t\t\tsend llc confirm\n |failed llc confirm\n | x------\n(after 2s)timeout\n wait llc confirm rsp\n\nwait decline\n\n(after 1s) timeout\n (after 2s) timeout\n | decline\n --------------\u003e\n | decline\n \u003c--------------\n\nAs a result, a decline message was sent in the implementation, and this\nmessage was read from TCP by the already-fallback connection.\n\nThis patch double the client timeout as 2x of the server value,\nWith this simple change, the Decline messages should never cross or\ncollide (during Confirm link timeout).\n\nThis issue requires an immediate solution, since the protocol updates\ninvolve a more long-term solution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52775",
"url": "https://www.suse.com/security/cve/CVE-2023-52775"
},
{
"category": "external",
"summary": "SUSE Bug 1225088 for CVE-2023-52775",
"url": "https://bugzilla.suse.com/1225088"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52775"
},
{
"cve": "CVE-2023-52776",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52776"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix dfs-radar and temperature event locking\n\nThe ath12k active pdevs are protected by RCU but the DFS-radar and\ntemperature event handling code calling ath12k_mac_get_ar_by_pdev_id()\nwas not marked as a read-side critical section.\n\nMark the code in question as RCU read-side critical sections to avoid\nany potential use-after-free issues.\n\nNote that the temperature event handler looks like a place holder\ncurrently but would still trigger an RCU lockdep splat.\n\nCompile tested only.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52776",
"url": "https://www.suse.com/security/cve/CVE-2023-52776"
},
{
"category": "external",
"summary": "SUSE Bug 1225090 for CVE-2023-52776",
"url": "https://bugzilla.suse.com/1225090"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52776"
},
{
"cve": "CVE-2023-52777",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52777"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath11k: fix gtk offload status event locking\n\nThe ath11k active pdevs are protected by RCU but the gtk offload status\nevent handling code calling ath11k_mac_get_arvif_by_vdev_id() was not\nmarked as a read-side critical section.\n\nMark the code in question as an RCU read-side critical section to avoid\nany potential use-after-free issues.\n\nCompile tested only.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52777",
"url": "https://www.suse.com/security/cve/CVE-2023-52777"
},
{
"category": "external",
"summary": "SUSE Bug 1224992 for CVE-2023-52777",
"url": "https://bugzilla.suse.com/1224992"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52777"
},
{
"cve": "CVE-2023-52780",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52780"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: mvneta: fix calls to page_pool_get_stats\n\nCalling page_pool_get_stats in the mvneta driver without checks\nleads to kernel crashes.\nFirst the page pool is only available if the bm is not used.\nThe page pool is also not allocated when the port is stopped.\nIt can also be not allocated in case of errors.\n\nThe current implementation leads to the following crash calling\nethstats on a port that is down or when calling it at the wrong moment:\n\nble to handle kernel NULL pointer dereference at virtual address 00000070\n[00000070] *pgd=00000000\nInternal error: Oops: 5 [#1] SMP ARM\nHardware name: Marvell Armada 380/385 (Device Tree)\nPC is at page_pool_get_stats+0x18/0x1cc\nLR is at mvneta_ethtool_get_stats+0xa0/0xe0 [mvneta]\npc : [\u003cc0b413cc\u003e] lr : [\u003cbf0a98d8\u003e] psr: a0000013\nsp : f1439d48 ip : f1439dc0 fp : 0000001d\nr10: 00000100 r9 : c4816b80 r8 : f0d75150\nr7 : bf0b400c r6 : c238f000 r5 : 00000000 r4 : f1439d68\nr3 : c2091040 r2 : ffffffd8 r1 : f1439d68 r0 : 00000000\nFlags: NzCv IRQs on FIQs on Mode SVC_32 ISA ARM Segment none\nControl: 10c5387d Table: 066b004a DAC: 00000051\nRegister r0 information: NULL pointer\nRegister r1 information: 2-page vmalloc region starting at 0xf1438000 allocated at kernel_clone+0x9c/0x390\nRegister r2 information: non-paged memory\nRegister r3 information: slab kmalloc-2k start c2091000 pointer offset 64 size 2048\nRegister r4 information: 2-page vmalloc region starting at 0xf1438000 allocated at kernel_clone+0x9c/0x390\nRegister r5 information: NULL pointer\nRegister r6 information: slab kmalloc-cg-4k start c238f000 pointer offset 0 size 4096\nRegister r7 information: 15-page vmalloc region starting at 0xbf0a8000 allocated at load_module+0xa30/0x219c\nRegister r8 information: 1-page vmalloc region starting at 0xf0d75000 allocated at ethtool_get_stats+0x138/0x208\nRegister r9 information: slab task_struct start c4816b80 pointer offset 0\nRegister r10 information: non-paged memory\nRegister r11 information: non-paged memory\nRegister r12 information: 2-page vmalloc region starting at 0xf1438000 allocated at kernel_clone+0x9c/0x390\nProcess snmpd (pid: 733, stack limit = 0x38de3a88)\nStack: (0xf1439d48 to 0xf143a000)\n9d40: 000000c0 00000001 c238f000 bf0b400c f0d75150 c4816b80\n9d60: 00000100 bf0a98d8 00000000 00000000 00000000 00000000 00000000 00000000\n9d80: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000\n9da0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000\n9dc0: 00000dc0 5335509c 00000035 c238f000 bf0b2214 01067f50 f0d75000 c0b9b9c8\n9de0: 0000001d 00000035 c2212094 5335509c c4816b80 c238f000 c5ad6e00 01067f50\n9e00: c1b0be80 c4816b80 00014813 c0b9d7f0 00000000 00000000 0000001d 0000001d\n9e20: 00000000 00001200 00000000 00000000 c216ed90 c73943b8 00000000 00000000\n9e40: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000\n9e60: 00000000 c0ad9034 00000000 00000000 00000000 00000000 00000000 00000000\n9e80: 00000000 00000000 00000000 5335509c c1b0be80 f1439ee4 00008946 c1b0be80\n9ea0: 01067f50 f1439ee3 00000000 00000046 b6d77ae0 c0b383f0 00008946 becc83e8\n9ec0: c1b0be80 00000051 0000000b c68ca480 c7172d00 c0ad8ff0 f1439ee3 cf600e40\n9ee0: 01600e40 32687465 00000000 00000000 00000000 01067f50 00000000 00000000\n9f00: 00000000 5335509c 00008946 00008946 00000000 c68ca480 becc83e8 c05e2de0\n9f20: f1439fb0 c03002f0 00000006 5ac3c35a c4816b80 00000006 b6d77ae0 c030caf0\n9f40: c4817350 00000014 f1439e1c 0000000c 00000000 00000051 01000000 00000014\n9f60: 00003fec f1439edc 00000001 c0372abc b6d77ae0 c0372abc cf600e40 5335509c\n9f80: c21e6800 01015c9c 0000000b 00008946 00000036 c03002f0 c4816b80 00000036\n9fa0: b6d77ae0 c03000c0 01015c9c 0000000b 0000000b 00008946 becc83e8 00000000\n9fc0: 01015c9c 0000000b 00008946 00000036 00000035 010678a0 b6d797ec b6d77ae0\n9fe0: b6dbf738 becc838c b6d186d7 b6baa858 40000030 0000000b 00000000 00000000\n page_pool_get_s\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52780",
"url": "https://www.suse.com/security/cve/CVE-2023-52780"
},
{
"category": "external",
"summary": "SUSE Bug 1224933 for CVE-2023-52780",
"url": "https://bugzilla.suse.com/1224933"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52780"
},
{
"cve": "CVE-2023-52781",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52781"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: config: fix iteration issue in \u0027usb_get_bos_descriptor()\u0027\n\nThe BOS descriptor defines a root descriptor and is the base descriptor for\naccessing a family of related descriptors.\n\nFunction \u0027usb_get_bos_descriptor()\u0027 encounters an iteration issue when\nskipping the \u0027USB_DT_DEVICE_CAPABILITY\u0027 descriptor type. This results in\nthe same descriptor being read repeatedly.\n\nTo address this issue, a \u0027goto\u0027 statement is introduced to ensure that the\npointer and the amount read is updated correctly. This ensures that the\nfunction iterates to the next descriptor instead of reading the same\ndescriptor repeatedly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52781",
"url": "https://www.suse.com/security/cve/CVE-2023-52781"
},
{
"category": "external",
"summary": "SUSE Bug 1225092 for CVE-2023-52781",
"url": "https://bugzilla.suse.com/1225092"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52781"
},
{
"cve": "CVE-2023-52782",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52782"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Track xmit submission to PTP WQ after populating metadata map\n\nEnsure the skb is available in metadata mapping to skbs before tracking the\nmetadata index for detecting undelivered CQEs. If the metadata index is put\nin the tracking list before putting the skb in the map, the metadata index\nmight be used for detecting undelivered CQEs before the relevant skb is\navailable in the map, which can lead to a null-ptr-deref.\n\nLog:\n general protection fault, probably for non-canonical address 0xdffffc0000000005: 0000 [#1] SMP KASAN\n KASAN: null-ptr-deref in range [0x0000000000000028-0x000000000000002f]\n CPU: 0 PID: 1243 Comm: kworker/0:2 Not tainted 6.6.0-rc4+ #108\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\n Workqueue: events mlx5e_rx_dim_work [mlx5_core]\n RIP: 0010:mlx5e_ptp_napi_poll+0x9a4/0x2290 [mlx5_core]\n Code: 8c 24 38 cc ff ff 4c 8d 3c c1 4c 89 f9 48 c1 e9 03 42 80 3c 31 00 0f 85 97 0f 00 00 4d 8b 3f 49 8d 7f 28 48 89 f9 48 c1 e9 03 \u003c42\u003e 80 3c 31 00 0f 85 8b 0f 00 00 49 8b 47 28 48 85 c0 0f 84 05 07\n RSP: 0018:ffff8884d3c09c88 EFLAGS: 00010206\n RAX: 0000000000000069 RBX: ffff8881160349d8 RCX: 0000000000000005\n RDX: ffffed10218f48cf RSI: 0000000000000004 RDI: 0000000000000028\n RBP: ffff888122707700 R08: 0000000000000001 R09: ffffed109a781383\n R10: 0000000000000003 R11: 0000000000000003 R12: ffff88810c7a7a40\n R13: ffff888122707700 R14: dffffc0000000000 R15: 0000000000000000\n FS: 0000000000000000(0000) GS:ffff8884d3c00000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 00007f4f878dd6e0 CR3: 000000014d108002 CR4: 0000000000370eb0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n Call Trace:\n \u003cIRQ\u003e\n ? die_addr+0x3c/0xa0\n ? exc_general_protection+0x144/0x210\n ? asm_exc_general_protection+0x22/0x30\n ? mlx5e_ptp_napi_poll+0x9a4/0x2290 [mlx5_core]\n ? mlx5e_ptp_napi_poll+0x8f6/0x2290 [mlx5_core]\n __napi_poll.constprop.0+0xa4/0x580\n net_rx_action+0x460/0xb80\n ? _raw_spin_unlock_irqrestore+0x32/0x60\n ? __napi_poll.constprop.0+0x580/0x580\n ? tasklet_action_common.isra.0+0x2ef/0x760\n __do_softirq+0x26c/0x827\n irq_exit_rcu+0xc2/0x100\n common_interrupt+0x7f/0xa0\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n asm_common_interrupt+0x22/0x40\n RIP: 0010:__kmem_cache_alloc_node+0xb/0x330\n Code: 41 5d 41 5e 41 5f c3 8b 44 24 14 8b 4c 24 10 09 c8 eb d5 e8 b7 43 ca 01 0f 1f 80 00 00 00 00 0f 1f 44 00 00 55 48 89 e5 41 57 \u003c41\u003e 56 41 89 d6 41 55 41 89 f5 41 54 49 89 fc 53 48 83 e4 f0 48 83\n RSP: 0018:ffff88812c4079c0 EFLAGS: 00000246\n RAX: 1ffffffff083c7fe RBX: ffff888100042dc0 RCX: 0000000000000218\n RDX: 00000000ffffffff RSI: 0000000000000dc0 RDI: ffff888100042dc0\n RBP: ffff88812c4079c8 R08: ffffffffa0289f96 R09: ffffed1025880ea9\n R10: ffff888138839f80 R11: 0000000000000002 R12: 0000000000000dc0\n R13: 0000000000000100 R14: 000000000000008c R15: ffff8881271fc450\n ? cmd_exec+0x796/0x2200 [mlx5_core]\n kmalloc_trace+0x26/0xc0\n cmd_exec+0x796/0x2200 [mlx5_core]\n mlx5_cmd_do+0x22/0xc0 [mlx5_core]\n mlx5_cmd_exec+0x17/0x30 [mlx5_core]\n mlx5_core_modify_cq_moderation+0x139/0x1b0 [mlx5_core]\n ? mlx5_add_cq_to_tasklet+0x280/0x280 [mlx5_core]\n ? lockdep_set_lock_cmp_fn+0x190/0x190\n ? process_one_work+0x659/0x1220\n mlx5e_rx_dim_work+0x9d/0x100 [mlx5_core]\n process_one_work+0x730/0x1220\n ? lockdep_hardirqs_on_prepare+0x400/0x400\n ? max_active_store+0xf0/0xf0\n ? assign_work+0x168/0x240\n worker_thread+0x70f/0x12d0\n ? __kthread_parkme+0xd1/0x1d0\n ? process_one_work+0x1220/0x1220\n kthread+0x2d9/0x3b0\n ? kthread_complete_and_exit+0x20/0x20\n ret_from_fork+0x2d/0x70\n ? kthread_complete_and_exit+0x20/0x20\n ret_from_fork_as\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52782",
"url": "https://www.suse.com/security/cve/CVE-2023-52782"
},
{
"category": "external",
"summary": "SUSE Bug 1225103 for CVE-2023-52782",
"url": "https://bugzilla.suse.com/1225103"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52782"
},
{
"cve": "CVE-2023-52783",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52783"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: wangxun: fix kernel panic due to null pointer\n\nWhen the device uses a custom subsystem vendor ID, the function\nwx_sw_init() returns before the memory of \u0027wx-\u003emac_table\u0027 is allocated.\nThe null pointer will causes the kernel panic.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52783",
"url": "https://www.suse.com/security/cve/CVE-2023-52783"
},
{
"category": "external",
"summary": "SUSE Bug 1225104 for CVE-2023-52783",
"url": "https://bugzilla.suse.com/1225104"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52783"
},
{
"cve": "CVE-2023-52784",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52784"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbonding: stop the device in bond_setup_by_slave()\n\nCommit 9eed321cde22 (\"net: lapbether: only support ethernet devices\")\nhas been able to keep syzbot away from net/lapb, until today.\n\nIn the following splat [1], the issue is that a lapbether device has\nbeen created on a bonding device without members. Then adding a non\nARPHRD_ETHER member forced the bonding master to change its type.\n\nThe fix is to make sure we call dev_close() in bond_setup_by_slave()\nso that the potential linked lapbether devices (or any other devices\nhaving assumptions on the physical device) are removed.\n\nA similar bug has been addressed in commit 40baec225765\n(\"bonding: fix panic on non-ARPHRD_ETHER enslave failure\")\n\n[1]\nskbuff: skb_under_panic: text:ffff800089508810 len:44 put:40 head:ffff0000c78e7c00 data:ffff0000c78e7bea tail:0x16 end:0x140 dev:bond0\nkernel BUG at net/core/skbuff.c:192 !\nInternal error: Oops - BUG: 00000000f2000800 [#1] PREEMPT SMP\nModules linked in:\nCPU: 0 PID: 6007 Comm: syz-executor383 Not tainted 6.6.0-rc3-syzkaller-gbf6547d8715b #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023\npstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : skb_panic net/core/skbuff.c:188 [inline]\npc : skb_under_panic+0x13c/0x140 net/core/skbuff.c:202\nlr : skb_panic net/core/skbuff.c:188 [inline]\nlr : skb_under_panic+0x13c/0x140 net/core/skbuff.c:202\nsp : ffff800096a06aa0\nx29: ffff800096a06ab0 x28: ffff800096a06ba0 x27: dfff800000000000\nx26: ffff0000ce9b9b50 x25: 0000000000000016 x24: ffff0000c78e7bea\nx23: ffff0000c78e7c00 x22: 000000000000002c x21: 0000000000000140\nx20: 0000000000000028 x19: ffff800089508810 x18: ffff800096a06100\nx17: 0000000000000000 x16: ffff80008a629a3c x15: 0000000000000001\nx14: 1fffe00036837a32 x13: 0000000000000000 x12: 0000000000000000\nx11: 0000000000000201 x10: 0000000000000000 x9 : cb50b496c519aa00\nx8 : cb50b496c519aa00 x7 : 0000000000000001 x6 : 0000000000000001\nx5 : ffff800096a063b8 x4 : ffff80008e280f80 x3 : ffff8000805ad11c\nx2 : 0000000000000001 x1 : 0000000100000201 x0 : 0000000000000086\nCall trace:\nskb_panic net/core/skbuff.c:188 [inline]\nskb_under_panic+0x13c/0x140 net/core/skbuff.c:202\nskb_push+0xf0/0x108 net/core/skbuff.c:2446\nip6gre_header+0xbc/0x738 net/ipv6/ip6_gre.c:1384\ndev_hard_header include/linux/netdevice.h:3136 [inline]\nlapbeth_data_transmit+0x1c4/0x298 drivers/net/wan/lapbether.c:257\nlapb_data_transmit+0x8c/0xb0 net/lapb/lapb_iface.c:447\nlapb_transmit_buffer+0x178/0x204 net/lapb/lapb_out.c:149\nlapb_send_control+0x220/0x320 net/lapb/lapb_subr.c:251\n__lapb_disconnect_request+0x9c/0x17c net/lapb/lapb_iface.c:326\nlapb_device_event+0x288/0x4e0 net/lapb/lapb_iface.c:492\nnotifier_call_chain+0x1a4/0x510 kernel/notifier.c:93\nraw_notifier_call_chain+0x3c/0x50 kernel/notifier.c:461\ncall_netdevice_notifiers_info net/core/dev.c:1970 [inline]\ncall_netdevice_notifiers_extack net/core/dev.c:2008 [inline]\ncall_netdevice_notifiers net/core/dev.c:2022 [inline]\n__dev_close_many+0x1b8/0x3c4 net/core/dev.c:1508\ndev_close_many+0x1e0/0x470 net/core/dev.c:1559\ndev_close+0x174/0x250 net/core/dev.c:1585\nlapbeth_device_event+0x2e4/0x958 drivers/net/wan/lapbether.c:466\nnotifier_call_chain+0x1a4/0x510 kernel/notifier.c:93\nraw_notifier_call_chain+0x3c/0x50 kernel/notifier.c:461\ncall_netdevice_notifiers_info net/core/dev.c:1970 [inline]\ncall_netdevice_notifiers_extack net/core/dev.c:2008 [inline]\ncall_netdevice_notifiers net/core/dev.c:2022 [inline]\n__dev_close_many+0x1b8/0x3c4 net/core/dev.c:1508\ndev_close_many+0x1e0/0x470 net/core/dev.c:1559\ndev_close+0x174/0x250 net/core/dev.c:1585\nbond_enslave+0x2298/0x30cc drivers/net/bonding/bond_main.c:2332\nbond_do_ioctl+0x268/0xc64 drivers/net/bonding/bond_main.c:4539\ndev_ifsioc+0x754/0x9ac\ndev_ioctl+0x4d8/0xd34 net/core/dev_ioctl.c:786\nsock_do_ioctl+0x1d4/0x2d0 net/socket.c:1217\nsock_ioctl+0x4e8/0x834 net/socket.c:1322\nvfs_ioctl fs/ioctl.c:51 [inline]\n__do_\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52784",
"url": "https://www.suse.com/security/cve/CVE-2023-52784"
},
{
"category": "external",
"summary": "SUSE Bug 1224946 for CVE-2023-52784",
"url": "https://bugzilla.suse.com/1224946"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52784"
},
{
"cve": "CVE-2023-52786",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52786"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix racy may inline data check in dio write\n\nsyzbot reports that the following warning from ext4_iomap_begin()\ntriggers as of the commit referenced below:\n\n if (WARN_ON_ONCE(ext4_has_inline_data(inode)))\n return -ERANGE;\n\nThis occurs during a dio write, which is never expected to encounter\nan inode with inline data. To enforce this behavior,\next4_dio_write_iter() checks the current inline state of the inode\nand clears the MAY_INLINE_DATA state flag to either fall back to\nbuffered writes, or enforce that any other writers in progress on\nthe inode are not allowed to create inline data.\n\nThe problem is that the check for existing inline data and the state\nflag can span a lock cycle. For example, if the ilock is originally\nlocked shared and subsequently upgraded to exclusive, another writer\nmay have reacquired the lock and created inline data before the dio\nwrite task acquires the lock and proceeds.\n\nThe commit referenced below loosens the lock requirements to allow\nsome forms of unaligned dio writes to occur under shared lock, but\nAFAICT the inline data check was technically already racy for any\ndio write that would have involved a lock cycle. Regardless, lift\nclearing of the state bit to the same lock critical section that\nchecks for preexisting inline data on the inode to close the race.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52786",
"url": "https://www.suse.com/security/cve/CVE-2023-52786"
},
{
"category": "external",
"summary": "SUSE Bug 1224939 for CVE-2023-52786",
"url": "https://bugzilla.suse.com/1224939"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.6,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "low"
}
],
"title": "CVE-2023-52786"
},
{
"cve": "CVE-2023-52787",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52787"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-mq: make sure active queue usage is held for bio_integrity_prep()\n\nblk_integrity_unregister() can come if queue usage counter isn\u0027t held\nfor one bio with integrity prepared, so this request may be completed with\ncalling profile-\u003ecomplete_fn, then kernel panic.\n\nAnother constraint is that bio_integrity_prep() needs to be called\nbefore bio merge.\n\nFix the issue by:\n\n- call bio_integrity_prep() with one queue usage counter grabbed reliably\n\n- call bio_integrity_prep() before bio merge",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52787",
"url": "https://www.suse.com/security/cve/CVE-2023-52787"
},
{
"category": "external",
"summary": "SUSE Bug 1225105 for CVE-2023-52787",
"url": "https://bugzilla.suse.com/1225105"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52787"
},
{
"cve": "CVE-2023-52788",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52788"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni915/perf: Fix NULL deref bugs with drm_dbg() calls\n\nWhen i915 perf interface is not available dereferencing it will lead to\nNULL dereferences.\n\nAs returning -ENOTSUPP is pretty clear return when perf interface is not\navailable.\n\n[tursulin: added stable tag]\n(cherry picked from commit 36f27350ff745bd228ab04d7845dfbffc177a889)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52788",
"url": "https://www.suse.com/security/cve/CVE-2023-52788"
},
{
"category": "external",
"summary": "SUSE Bug 1225106 for CVE-2023-52788",
"url": "https://bugzilla.suse.com/1225106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52788"
},
{
"cve": "CVE-2023-52789",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52789"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntty: vcc: Add check for kstrdup() in vcc_probe()\n\nAdd check for the return value of kstrdup() and return the error, if it\nfails in order to avoid NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52789",
"url": "https://www.suse.com/security/cve/CVE-2023-52789"
},
{
"category": "external",
"summary": "SUSE Bug 1225180 for CVE-2023-52789",
"url": "https://bugzilla.suse.com/1225180"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52789"
},
{
"cve": "CVE-2023-52791",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52791"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni2c: core: Run atomic i2c xfer when !preemptible\n\nSince bae1d3a05a8b, i2c transfers are non-atomic if preemption is\ndisabled. However, non-atomic i2c transfers require preemption (e.g. in\nwait_for_completion() while waiting for the DMA).\n\npanic() calls preempt_disable_notrace() before calling\nemergency_restart(). Therefore, if an i2c device is used for the\nrestart, the xfer should be atomic. This avoids warnings like:\n\n[ 12.667612] WARNING: CPU: 1 PID: 1 at kernel/rcu/tree_plugin.h:318 rcu_note_context_switch+0x33c/0x6b0\n[ 12.676926] Voluntary context switch within RCU read-side critical section!\n...\n[ 12.742376] schedule_timeout from wait_for_completion_timeout+0x90/0x114\n[ 12.749179] wait_for_completion_timeout from tegra_i2c_wait_completion+0x40/0x70\n...\n[ 12.994527] atomic_notifier_call_chain from machine_restart+0x34/0x58\n[ 13.001050] machine_restart from panic+0x2a8/0x32c\n\nUse !preemptible() instead, which is basically the same check as\npre-v5.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52791",
"url": "https://www.suse.com/security/cve/CVE-2023-52791"
},
{
"category": "external",
"summary": "SUSE Bug 1225108 for CVE-2023-52791",
"url": "https://bugzilla.suse.com/1225108"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52791"
},
{
"cve": "CVE-2023-52792",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52792"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncxl/region: Do not try to cleanup after cxl_region_setup_targets() fails\n\nCommit 5e42bcbc3fef (\"cxl/region: decrement -\u003enr_targets on error in\ncxl_region_attach()\") tried to avoid \u0027eiw\u0027 initialization errors when\n-\u003enr_targets exceeded 16, by just decrementing -\u003enr_targets when\ncxl_region_setup_targets() failed.\n\nCommit 86987c766276 (\"cxl/region: Cleanup target list on attach error\")\nextended that cleanup to also clear cxled-\u003epos and p-\u003etargets[pos]. The\ninitialization error was incidentally fixed separately by:\nCommit 8d4285425714 (\"cxl/region: Fix port setup uninitialized variable\nwarnings\") which was merged a few days after 5e42bcbc3fef.\n\nBut now the original cleanup when cxl_region_setup_targets() fails\nprevents endpoint and switch decoder resources from being reused:\n\n1) the cleanup does not set the decoder\u0027s region to NULL, which results\n in future dpa_size_store() calls returning -EBUSY\n2) the decoder is not properly freed, which results in future commit\n errors associated with the upstream switch\n\nNow that the initialization errors were fixed separately, the proper\ncleanup for this case is to just return immediately. Then the resources\nassociated with this target get cleanup up as normal when the failed\nregion is deleted.\n\nThe -\u003enr_targets decrement in the error case also helped prevent\na p-\u003etargets[] array overflow, so add a new check to prevent against\nthat overflow.\n\nTested by trying to create an invalid region for a 2 switch * 2 endpoint\ntopology, and then following up with creating a valid region.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52792",
"url": "https://www.suse.com/security/cve/CVE-2023-52792"
},
{
"category": "external",
"summary": "SUSE Bug 1225477 for CVE-2023-52792",
"url": "https://bugzilla.suse.com/1225477"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52792"
},
{
"cve": "CVE-2023-52794",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52794"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nthermal: intel: powerclamp: fix mismatch in get function for max_idle\n\nKASAN reported this\n\n [ 444.853098] BUG: KASAN: global-out-of-bounds in param_get_int+0x77/0x90\n [ 444.853111] Read of size 4 at addr ffffffffc16c9220 by task cat/2105\n ...\n [ 444.853442] The buggy address belongs to the variable:\n [ 444.853443] max_idle+0x0/0xffffffffffffcde0 [intel_powerclamp]\n\nThere is a mismatch between the param_get_int and the definition of\nmax_idle. Replacing param_get_int with param_get_byte resolves this\nissue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52794",
"url": "https://www.suse.com/security/cve/CVE-2023-52794"
},
{
"category": "external",
"summary": "SUSE Bug 1225028 for CVE-2023-52794",
"url": "https://bugzilla.suse.com/1225028"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "low"
}
],
"title": "CVE-2023-52794"
},
{
"cve": "CVE-2023-52795",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52795"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvhost-vdpa: fix use after free in vhost_vdpa_probe()\n\nThe put_device() calls vhost_vdpa_release_dev() which calls\nida_simple_remove() and frees \"v\". So this call to\nida_simple_remove() is a use after free and a double free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52795",
"url": "https://www.suse.com/security/cve/CVE-2023-52795"
},
{
"category": "external",
"summary": "SUSE Bug 1225085 for CVE-2023-52795",
"url": "https://bugzilla.suse.com/1225085"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52795"
},
{
"cve": "CVE-2023-52796",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52796"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipvlan: add ipvlan_route_v6_outbound() helper\n\nInspired by syzbot reports using a stack of multiple ipvlan devices.\n\nReduce stack size needed in ipvlan_process_v6_outbound() by moving\nthe flowi6 struct used for the route lookup in an non inlined\nhelper. ipvlan_route_v6_outbound() needs 120 bytes on the stack,\nimmediately reclaimed.\n\nAlso make sure ipvlan_process_v4_outbound() is not inlined.\n\nWe might also have to lower MAX_NEST_DEV, because only syzbot uses\nsetups with more than four stacked devices.\n\nBUG: TASK stack guard page was hit at ffffc9000e803ff8 (stack is ffffc9000e804000..ffffc9000e808000)\nstack guard page: 0000 [#1] SMP KASAN\nCPU: 0 PID: 13442 Comm: syz-executor.4 Not tainted 6.1.52-syzkaller #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023\nRIP: 0010:kasan_check_range+0x4/0x2a0 mm/kasan/generic.c:188\nCode: 48 01 c6 48 89 c7 e8 db 4e c1 03 31 c0 5d c3 cc 0f 0b eb 02 0f 0b b8 ea ff ff ff 5d c3 cc 00 00 cc cc 00 00 cc cc 55 48 89 e5 \u003c41\u003e 57 41 56 41 55 41 54 53 b0 01 48 85 f6 0f 84 a4 01 00 00 48 89\nRSP: 0018:ffffc9000e804000 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff817e5bf2\nRDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff887c6568\nRBP: ffffc9000e804000 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff92001d0080c\nR13: dffffc0000000000 R14: ffffffff87e6b100 R15: 0000000000000000\nFS: 00007fd0c55826c0(0000) GS:ffff8881f6800000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: ffffc9000e803ff8 CR3: 0000000170ef7000 CR4: 00000000003506f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n\u003c#DF\u003e\n\u003c/#DF\u003e\n\u003cTASK\u003e\n[\u003cffffffff81f281d1\u003e] __kasan_check_read+0x11/0x20 mm/kasan/shadow.c:31\n[\u003cffffffff817e5bf2\u003e] instrument_atomic_read include/linux/instrumented.h:72 [inline]\n[\u003cffffffff817e5bf2\u003e] _test_bit include/asm-generic/bitops/instrumented-non-atomic.h:141 [inline]\n[\u003cffffffff817e5bf2\u003e] cpumask_test_cpu include/linux/cpumask.h:506 [inline]\n[\u003cffffffff817e5bf2\u003e] cpu_online include/linux/cpumask.h:1092 [inline]\n[\u003cffffffff817e5bf2\u003e] trace_lock_acquire include/trace/events/lock.h:24 [inline]\n[\u003cffffffff817e5bf2\u003e] lock_acquire+0xe2/0x590 kernel/locking/lockdep.c:5632\n[\u003cffffffff8563221e\u003e] rcu_lock_acquire+0x2e/0x40 include/linux/rcupdate.h:306\n[\u003cffffffff8561464d\u003e] rcu_read_lock include/linux/rcupdate.h:747 [inline]\n[\u003cffffffff8561464d\u003e] ip6_pol_route+0x15d/0x1440 net/ipv6/route.c:2221\n[\u003cffffffff85618120\u003e] ip6_pol_route_output+0x50/0x80 net/ipv6/route.c:2606\n[\u003cffffffff856f65b5\u003e] pol_lookup_func include/net/ip6_fib.h:584 [inline]\n[\u003cffffffff856f65b5\u003e] fib6_rule_lookup+0x265/0x620 net/ipv6/fib6_rules.c:116\n[\u003cffffffff85618009\u003e] ip6_route_output_flags_noref+0x2d9/0x3a0 net/ipv6/route.c:2638\n[\u003cffffffff8561821a\u003e] ip6_route_output_flags+0xca/0x340 net/ipv6/route.c:2651\n[\u003cffffffff838bd5a3\u003e] ip6_route_output include/net/ip6_route.h:100 [inline]\n[\u003cffffffff838bd5a3\u003e] ipvlan_process_v6_outbound drivers/net/ipvlan/ipvlan_core.c:473 [inline]\n[\u003cffffffff838bd5a3\u003e] ipvlan_process_outbound drivers/net/ipvlan/ipvlan_core.c:529 [inline]\n[\u003cffffffff838bd5a3\u003e] ipvlan_xmit_mode_l3 drivers/net/ipvlan/ipvlan_core.c:602 [inline]\n[\u003cffffffff838bd5a3\u003e] ipvlan_queue_xmit+0xc33/0x1be0 drivers/net/ipvlan/ipvlan_core.c:677\n[\u003cffffffff838c2909\u003e] ipvlan_start_xmit+0x49/0x100 drivers/net/ipvlan/ipvlan_main.c:229\n[\u003cffffffff84d03900\u003e] netdev_start_xmit include/linux/netdevice.h:4966 [inline]\n[\u003cffffffff84d03900\u003e] xmit_one net/core/dev.c:3644 [inline]\n[\u003cffffffff84d03900\u003e] dev_hard_start_xmit+0x320/0x980 net/core/dev.c:3660\n[\u003cffffffff84d080e2\u003e] __dev_queue_xmit+0x16b2/0x3370 net/core/dev.c:4324\n[\u003cffffffff855ce4cd\u003e] dev_queue_xmit include/linux/netdevice.h:3067 [inline]\n[\u003cffffffff855ce4cd\u003e] neigh_hh_output include/net/neighbour.h:529 [inline]\n[\u003cf\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52796",
"url": "https://www.suse.com/security/cve/CVE-2023-52796"
},
{
"category": "external",
"summary": "SUSE Bug 1224930 for CVE-2023-52796",
"url": "https://bugzilla.suse.com/1224930"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52796"
},
{
"cve": "CVE-2023-52798",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52798"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath11k: fix dfs radar event locking\n\nThe ath11k active pdevs are protected by RCU but the DFS radar event\nhandling code calling ath11k_mac_get_ar_by_pdev_id() was not marked as a\nread-side critical section.\n\nMark the code in question as an RCU read-side critical section to avoid\nany potential use-after-free issues.\n\nCompile tested only.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52798",
"url": "https://www.suse.com/security/cve/CVE-2023-52798"
},
{
"category": "external",
"summary": "SUSE Bug 1224947 for CVE-2023-52798",
"url": "https://bugzilla.suse.com/1224947"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52798"
},
{
"cve": "CVE-2023-52799",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52799"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: fix array-index-out-of-bounds in dbFindLeaf\n\nCurrently while searching for dmtree_t for sufficient free blocks there\nis an array out of bounds while getting element in tp-\u003edm_stree. To add\nthe required check for out of bound we first need to determine the type\nof dmtree. Thus added an extra parameter to dbFindLeaf so that the type\nof tree can be determined and the required check can be applied.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52799",
"url": "https://www.suse.com/security/cve/CVE-2023-52799"
},
{
"category": "external",
"summary": "SUSE Bug 1225472 for CVE-2023-52799",
"url": "https://bugzilla.suse.com/1225472"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52799"
},
{
"cve": "CVE-2023-52800",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52800"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath11k: fix htt pktlog locking\n\nThe ath11k active pdevs are protected by RCU but the htt pktlog handling\ncode calling ath11k_mac_get_ar_by_pdev_id() was not marked as a\nread-side critical section.\n\nMark the code in question as an RCU read-side critical section to avoid\nany potential use-after-free issues.\n\nCompile tested only.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52800",
"url": "https://www.suse.com/security/cve/CVE-2023-52800"
},
{
"category": "external",
"summary": "SUSE Bug 1230600 for CVE-2023-52800",
"url": "https://bugzilla.suse.com/1230600"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52800"
},
{
"cve": "CVE-2023-52801",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52801"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommufd: Fix missing update of domains_itree after splitting iopt_area\n\nIn iopt_area_split(), if the original iopt_area has filled a domain and is\nlinked to domains_itree, pages_nodes have to be properly\nreinserted. Otherwise the domains_itree becomes corrupted and we will UAF.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52801",
"url": "https://www.suse.com/security/cve/CVE-2023-52801"
},
{
"category": "external",
"summary": "SUSE Bug 1225006 for CVE-2023-52801",
"url": "https://bugzilla.suse.com/1225006"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52801"
},
{
"cve": "CVE-2023-52803",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52803"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nSUNRPC: Fix RPC client cleaned up the freed pipefs dentries\n\nRPC client pipefs dentries cleanup is in separated rpc_remove_pipedir()\nworkqueue,which takes care about pipefs superblock locking.\nIn some special scenarios, when kernel frees the pipefs sb of the\ncurrent client and immediately alloctes a new pipefs sb,\nrpc_remove_pipedir function would misjudge the existence of pipefs\nsb which is not the one it used to hold. As a result,\nthe rpc_remove_pipedir would clean the released freed pipefs dentries.\n\nTo fix this issue, rpc_remove_pipedir should check whether the\ncurrent pipefs sb is consistent with the original pipefs sb.\n\nThis error can be catched by KASAN:\n=========================================================\n[ 250.497700] BUG: KASAN: slab-use-after-free in dget_parent+0x195/0x200\n[ 250.498315] Read of size 4 at addr ffff88800a2ab804 by task kworker/0:18/106503\n[ 250.500549] Workqueue: events rpc_free_client_work\n[ 250.501001] Call Trace:\n[ 250.502880] kasan_report+0xb6/0xf0\n[ 250.503209] ? dget_parent+0x195/0x200\n[ 250.503561] dget_parent+0x195/0x200\n[ 250.503897] ? __pfx_rpc_clntdir_depopulate+0x10/0x10\n[ 250.504384] rpc_rmdir_depopulate+0x1b/0x90\n[ 250.504781] rpc_remove_client_dir+0xf5/0x150\n[ 250.505195] rpc_free_client_work+0xe4/0x230\n[ 250.505598] process_one_work+0x8ee/0x13b0\n...\n[ 22.039056] Allocated by task 244:\n[ 22.039390] kasan_save_stack+0x22/0x50\n[ 22.039758] kasan_set_track+0x25/0x30\n[ 22.040109] __kasan_slab_alloc+0x59/0x70\n[ 22.040487] kmem_cache_alloc_lru+0xf0/0x240\n[ 22.040889] __d_alloc+0x31/0x8e0\n[ 22.041207] d_alloc+0x44/0x1f0\n[ 22.041514] __rpc_lookup_create_exclusive+0x11c/0x140\n[ 22.041987] rpc_mkdir_populate.constprop.0+0x5f/0x110\n[ 22.042459] rpc_create_client_dir+0x34/0x150\n[ 22.042874] rpc_setup_pipedir_sb+0x102/0x1c0\n[ 22.043284] rpc_client_register+0x136/0x4e0\n[ 22.043689] rpc_new_client+0x911/0x1020\n[ 22.044057] rpc_create_xprt+0xcb/0x370\n[ 22.044417] rpc_create+0x36b/0x6c0\n...\n[ 22.049524] Freed by task 0:\n[ 22.049803] kasan_save_stack+0x22/0x50\n[ 22.050165] kasan_set_track+0x25/0x30\n[ 22.050520] kasan_save_free_info+0x2b/0x50\n[ 22.050921] __kasan_slab_free+0x10e/0x1a0\n[ 22.051306] kmem_cache_free+0xa5/0x390\n[ 22.051667] rcu_core+0x62c/0x1930\n[ 22.051995] __do_softirq+0x165/0x52a\n[ 22.052347]\n[ 22.052503] Last potentially related work creation:\n[ 22.052952] kasan_save_stack+0x22/0x50\n[ 22.053313] __kasan_record_aux_stack+0x8e/0xa0\n[ 22.053739] __call_rcu_common.constprop.0+0x6b/0x8b0\n[ 22.054209] dentry_free+0xb2/0x140\n[ 22.054540] __dentry_kill+0x3be/0x540\n[ 22.054900] shrink_dentry_list+0x199/0x510\n[ 22.055293] shrink_dcache_parent+0x190/0x240\n[ 22.055703] do_one_tree+0x11/0x40\n[ 22.056028] shrink_dcache_for_umount+0x61/0x140\n[ 22.056461] generic_shutdown_super+0x70/0x590\n[ 22.056879] kill_anon_super+0x3a/0x60\n[ 22.057234] rpc_kill_sb+0x121/0x200",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52803",
"url": "https://www.suse.com/security/cve/CVE-2023-52803"
},
{
"category": "external",
"summary": "SUSE Bug 1225008 for CVE-2023-52803",
"url": "https://bugzilla.suse.com/1225008"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52803"
},
{
"cve": "CVE-2023-52804",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52804"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/jfs: Add validity check for db_maxag and db_agpref\n\nBoth db_maxag and db_agpref are used as the index of the\ndb_agfree array, but there is currently no validity check for\ndb_maxag and db_agpref, which can lead to errors.\n\nThe following is related bug reported by Syzbot:\n\nUBSAN: array-index-out-of-bounds in fs/jfs/jfs_dmap.c:639:20\nindex 7936 is out of range for type \u0027atomic_t[128]\u0027\n\nAdd checking that the values of db_maxag and db_agpref are valid\nindexes for the db_agfree array.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52804",
"url": "https://www.suse.com/security/cve/CVE-2023-52804"
},
{
"category": "external",
"summary": "SUSE Bug 1225550 for CVE-2023-52804",
"url": "https://bugzilla.suse.com/1225550"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52804"
},
{
"cve": "CVE-2023-52805",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52805"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: fix array-index-out-of-bounds in diAlloc\n\nCurrently there is not check against the agno of the iag while\nallocating new inodes to avoid fragmentation problem. Added the check\nwhich is required.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52805",
"url": "https://www.suse.com/security/cve/CVE-2023-52805"
},
{
"category": "external",
"summary": "SUSE Bug 1225553 for CVE-2023-52805",
"url": "https://bugzilla.suse.com/1225553"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52805"
},
{
"cve": "CVE-2023-52806",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52806"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: hda: Fix possible null-ptr-deref when assigning a stream\n\nWhile AudioDSP drivers assign streams exclusively of HOST or LINK type,\nnothing blocks a user to attempt to assign a COUPLED stream. As\nsupplied substream instance may be a stub, what is the case when\ncode-loading, such scenario ends with null-ptr-deref.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52806",
"url": "https://www.suse.com/security/cve/CVE-2023-52806"
},
{
"category": "external",
"summary": "SUSE Bug 1225554 for CVE-2023-52806",
"url": "https://bugzilla.suse.com/1225554"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52806"
},
{
"cve": "CVE-2023-52807",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52807"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: fix out-of-bounds access may occur when coalesce info is read via debugfs\n\nThe hns3 driver define an array of string to show the coalesce\ninfo, but if the kernel adds a new mode or a new state,\nout-of-bounds access may occur when coalesce info is read via\ndebugfs, this patch fix the problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52807",
"url": "https://www.suse.com/security/cve/CVE-2023-52807"
},
{
"category": "external",
"summary": "SUSE Bug 1225097 for CVE-2023-52807",
"url": "https://bugzilla.suse.com/1225097"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52807"
},
{
"cve": "CVE-2023-52808",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52808"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: hisi_sas: Set debugfs_dir pointer to NULL after removing debugfs\n\nIf init debugfs failed during device registration due to memory allocation\nfailure, debugfs_remove_recursive() is called, after which debugfs_dir is\nnot set to NULL. debugfs_remove_recursive() will be called again during\ndevice removal. As a result, illegal pointer is accessed.\n\n[ 1665.467244] hisi_sas_v3_hw 0000:b4:02.0: failed to init debugfs!\n...\n[ 1669.836708] Unable to handle kernel NULL pointer dereference at virtual address 00000000000000a0\n[ 1669.872669] pc : down_write+0x24/0x70\n[ 1669.876315] lr : down_write+0x1c/0x70\n[ 1669.879961] sp : ffff000036f53a30\n[ 1669.883260] x29: ffff000036f53a30 x28: ffffa027c31549f8\n[ 1669.888547] x27: ffffa027c3140000 x26: 0000000000000000\n[ 1669.893834] x25: ffffa027bf37c270 x24: ffffa027bf37c270\n[ 1669.899122] x23: ffff0000095406b8 x22: ffff0000095406a8\n[ 1669.904408] x21: 0000000000000000 x20: ffffa027bf37c310\n[ 1669.909695] x19: 00000000000000a0 x18: ffff8027dcd86f10\n[ 1669.914982] x17: 0000000000000000 x16: 0000000000000000\n[ 1669.920268] x15: 0000000000000000 x14: ffffa0274014f870\n[ 1669.925555] x13: 0000000000000040 x12: 0000000000000228\n[ 1669.930842] x11: 0000000000000020 x10: 0000000000000bb0\n[ 1669.936129] x9 : ffff000036f537f0 x8 : ffff80273088ca10\n[ 1669.941416] x7 : 000000000000001d x6 : 00000000ffffffff\n[ 1669.946702] x5 : ffff000008a36310 x4 : ffff80273088be00\n[ 1669.951989] x3 : ffff000009513e90 x2 : 0000000000000000\n[ 1669.957276] x1 : 00000000000000a0 x0 : ffffffff00000001\n[ 1669.962563] Call trace:\n[ 1669.965000] down_write+0x24/0x70\n[ 1669.968301] debugfs_remove_recursive+0x5c/0x1b0\n[ 1669.972905] hisi_sas_debugfs_exit+0x24/0x30 [hisi_sas_main]\n[ 1669.978541] hisi_sas_v3_remove+0x130/0x150 [hisi_sas_v3_hw]\n[ 1669.984175] pci_device_remove+0x48/0xd8\n[ 1669.988082] device_release_driver_internal+0x1b4/0x250\n[ 1669.993282] device_release_driver+0x28/0x38\n[ 1669.997534] pci_stop_bus_device+0x84/0xb8\n[ 1670.001611] pci_stop_and_remove_bus_device_locked+0x24/0x40\n[ 1670.007244] remove_store+0xfc/0x140\n[ 1670.010802] dev_attr_store+0x44/0x60\n[ 1670.014448] sysfs_kf_write+0x58/0x80\n[ 1670.018095] kernfs_fop_write+0xe8/0x1f0\n[ 1670.022000] __vfs_write+0x60/0x190\n[ 1670.025472] vfs_write+0xac/0x1c0\n[ 1670.028771] ksys_write+0x6c/0xd8\n[ 1670.032071] __arm64_sys_write+0x24/0x30\n[ 1670.035977] el0_svc_common+0x78/0x130\n[ 1670.039710] el0_svc_handler+0x38/0x78\n[ 1670.043442] el0_svc+0x8/0xc\n\nTo fix this, set debugfs_dir to NULL after debugfs_remove_recursive().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52808",
"url": "https://www.suse.com/security/cve/CVE-2023-52808"
},
{
"category": "external",
"summary": "SUSE Bug 1225555 for CVE-2023-52808",
"url": "https://bugzilla.suse.com/1225555"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52808"
},
{
"cve": "CVE-2023-52809",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52809"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: libfc: Fix potential NULL pointer dereference in fc_lport_ptp_setup()\n\nfc_lport_ptp_setup() did not check the return value of fc_rport_create()\nwhich can return NULL and would cause a NULL pointer dereference. Address\nthis issue by checking return value of fc_rport_create() and log error\nmessage on fc_rport_create() failed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52809",
"url": "https://www.suse.com/security/cve/CVE-2023-52809"
},
{
"category": "external",
"summary": "SUSE Bug 1225556 for CVE-2023-52809",
"url": "https://bugzilla.suse.com/1225556"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52809"
},
{
"cve": "CVE-2023-52810",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52810"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/jfs: Add check for negative db_l2nbperpage\n\nl2nbperpage is log2(number of blks per page), and the minimum legal\nvalue should be 0, not negative.\n\nIn the case of l2nbperpage being negative, an error will occur\nwhen subsequently used as shift exponent.\n\nSyzbot reported this bug:\n\nUBSAN: shift-out-of-bounds in fs/jfs/jfs_dmap.c:799:12\nshift exponent -16777216 is negative",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52810",
"url": "https://www.suse.com/security/cve/CVE-2023-52810"
},
{
"category": "external",
"summary": "SUSE Bug 1225557 for CVE-2023-52810",
"url": "https://bugzilla.suse.com/1225557"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52810"
},
{
"cve": "CVE-2023-52811",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52811"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: ibmvfc: Remove BUG_ON in the case of an empty event pool\n\nIn practice the driver should never send more commands than are allocated\nto a queue\u0027s event pool. In the unlikely event that this happens, the code\nasserts a BUG_ON, and in the case that the kernel is not configured to\ncrash on panic returns a junk event pointer from the empty event list\ncausing things to spiral from there. This BUG_ON is a historical artifact\nof the ibmvfc driver first being upstreamed, and it is well known now that\nthe use of BUG_ON is bad practice except in the most unrecoverable\nscenario. There is nothing about this scenario that prevents the driver\nfrom recovering and carrying on.\n\nRemove the BUG_ON in question from ibmvfc_get_event() and return a NULL\npointer in the case of an empty event pool. Update all call sites to\nibmvfc_get_event() to check for a NULL pointer and perfrom the appropriate\nfailure or recovery action.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52811",
"url": "https://www.suse.com/security/cve/CVE-2023-52811"
},
{
"category": "external",
"summary": "SUSE Bug 1225559 for CVE-2023-52811",
"url": "https://bugzilla.suse.com/1225559"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52811"
},
{
"cve": "CVE-2023-52812",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52812"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd: check num of link levels when update pcie param\n\nIn SR-IOV environment, the value of pcie_table-\u003enum_of_link_levels will\nbe 0, and num_of_levels - 1 will cause array index out of bounds",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52812",
"url": "https://www.suse.com/security/cve/CVE-2023-52812"
},
{
"category": "external",
"summary": "SUSE Bug 1225564 for CVE-2023-52812",
"url": "https://bugzilla.suse.com/1225564"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52812"
},
{
"cve": "CVE-2023-52813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52813"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: pcrypt - Fix hungtask for PADATA_RESET\n\nWe found a hungtask bug in test_aead_vec_cfg as follows:\n\nINFO: task cryptomgr_test:391009 blocked for more than 120 seconds.\n\"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\nCall trace:\n __switch_to+0x98/0xe0\n __schedule+0x6c4/0xf40\n schedule+0xd8/0x1b4\n schedule_timeout+0x474/0x560\n wait_for_common+0x368/0x4e0\n wait_for_completion+0x20/0x30\n wait_for_completion+0x20/0x30\n test_aead_vec_cfg+0xab4/0xd50\n test_aead+0x144/0x1f0\n alg_test_aead+0xd8/0x1e0\n alg_test+0x634/0x890\n cryptomgr_test+0x40/0x70\n kthread+0x1e0/0x220\n ret_from_fork+0x10/0x18\n Kernel panic - not syncing: hung_task: blocked tasks\n\nFor padata_do_parallel, when the return err is 0 or -EBUSY, it will call\nwait_for_completion(\u0026wait-\u003ecompletion) in test_aead_vec_cfg. In normal\ncase, aead_request_complete() will be called in pcrypt_aead_serial and the\nreturn err is 0 for padata_do_parallel. But, when pinst-\u003eflags is\nPADATA_RESET, the return err is -EBUSY for padata_do_parallel, and it\nwon\u0027t call aead_request_complete(). Therefore, test_aead_vec_cfg will\nhung at wait_for_completion(\u0026wait-\u003ecompletion), which will cause\nhungtask.\n\nThe problem comes as following:\n(padata_do_parallel) |\n rcu_read_lock_bh(); |\n err = -EINVAL; | (padata_replace)\n | pinst-\u003eflags |= PADATA_RESET;\n err = -EBUSY |\n if (pinst-\u003eflags \u0026 PADATA_RESET) |\n rcu_read_unlock_bh() |\n return err\n\nIn order to resolve the problem, we replace the return err -EBUSY with\n-EAGAIN, which means parallel_data is changing, and the caller should call\nit again.\n\nv3:\nremove retry and just change the return err.\nv2:\nintroduce padata_try_do_parallel() in pcrypt_aead_encrypt and\npcrypt_aead_decrypt to solve the hungtask.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52813",
"url": "https://www.suse.com/security/cve/CVE-2023-52813"
},
{
"category": "external",
"summary": "SUSE Bug 1225527 for CVE-2023-52813",
"url": "https://bugzilla.suse.com/1225527"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52813"
},
{
"cve": "CVE-2023-52814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52814"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Fix potential null pointer derefernce\n\nThe amdgpu_ras_get_context may return NULL if device\nnot support ras feature, so add check before using.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52814",
"url": "https://www.suse.com/security/cve/CVE-2023-52814"
},
{
"category": "external",
"summary": "SUSE Bug 1225565 for CVE-2023-52814",
"url": "https://bugzilla.suse.com/1225565"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52814"
},
{
"cve": "CVE-2023-52815",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52815"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu/vkms: fix a possible null pointer dereference\n\nIn amdgpu_vkms_conn_get_modes(), the return value of drm_cvt_mode()\nis assigned to mode, which will lead to a NULL pointer dereference\non failure of drm_cvt_mode(). Add a check to avoid null pointer\ndereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52815",
"url": "https://www.suse.com/security/cve/CVE-2023-52815"
},
{
"category": "external",
"summary": "SUSE Bug 1225568 for CVE-2023-52815",
"url": "https://bugzilla.suse.com/1225568"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52815"
},
{
"cve": "CVE-2023-52816",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52816"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdkfd: Fix shift out-of-bounds issue\n\n[ 567.613292] shift exponent 255 is too large for 64-bit type \u0027long unsigned int\u0027\n[ 567.614498] CPU: 5 PID: 238 Comm: kworker/5:1 Tainted: G OE 6.2.0-34-generic #34~22.04.1-Ubuntu\n[ 567.614502] Hardware name: AMD Splinter/Splinter-RPL, BIOS WS43927N_871 09/25/2023\n[ 567.614504] Workqueue: events send_exception_work_handler [amdgpu]\n[ 567.614748] Call Trace:\n[ 567.614750] \u003cTASK\u003e\n[ 567.614753] dump_stack_lvl+0x48/0x70\n[ 567.614761] dump_stack+0x10/0x20\n[ 567.614763] __ubsan_handle_shift_out_of_bounds+0x156/0x310\n[ 567.614769] ? srso_alias_return_thunk+0x5/0x7f\n[ 567.614773] ? update_sd_lb_stats.constprop.0+0xf2/0x3c0\n[ 567.614780] svm_range_split_by_granularity.cold+0x2b/0x34 [amdgpu]\n[ 567.615047] ? srso_alias_return_thunk+0x5/0x7f\n[ 567.615052] svm_migrate_to_ram+0x185/0x4d0 [amdgpu]\n[ 567.615286] do_swap_page+0x7b6/0xa30\n[ 567.615291] ? srso_alias_return_thunk+0x5/0x7f\n[ 567.615294] ? __free_pages+0x119/0x130\n[ 567.615299] handle_pte_fault+0x227/0x280\n[ 567.615303] __handle_mm_fault+0x3c0/0x720\n[ 567.615311] handle_mm_fault+0x119/0x330\n[ 567.615314] ? lock_mm_and_find_vma+0x44/0x250\n[ 567.615318] do_user_addr_fault+0x1a9/0x640\n[ 567.615323] exc_page_fault+0x81/0x1b0\n[ 567.615328] asm_exc_page_fault+0x27/0x30\n[ 567.615332] RIP: 0010:__get_user_8+0x1c/0x30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52816",
"url": "https://www.suse.com/security/cve/CVE-2023-52816"
},
{
"category": "external",
"summary": "SUSE Bug 1225529 for CVE-2023-52816",
"url": "https://bugzilla.suse.com/1225529"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52816"
},
{
"cve": "CVE-2023-52817",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52817"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Fix a null pointer access when the smc_rreg pointer is NULL\n\nIn certain types of chips, such as VEGA20, reading the amdgpu_regs_smc file could result in an abnormal null pointer access when the smc_rreg pointer is NULL. Below are the steps to reproduce this issue and the corresponding exception log:\n\n1. Navigate to the directory: /sys/kernel/debug/dri/0\n2. Execute command: cat amdgpu_regs_smc\n3. Exception Log::\n[4005007.702554] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[4005007.702562] #PF: supervisor instruction fetch in kernel mode\n[4005007.702567] #PF: error_code(0x0010) - not-present page\n[4005007.702570] PGD 0 P4D 0\n[4005007.702576] Oops: 0010 [#1] SMP NOPTI\n[4005007.702581] CPU: 4 PID: 62563 Comm: cat Tainted: G OE 5.15.0-43-generic #46-Ubunt u\n[4005007.702590] RIP: 0010:0x0\n[4005007.702598] Code: Unable to access opcode bytes at RIP 0xffffffffffffffd6.\n[4005007.702600] RSP: 0018:ffffa82b46d27da0 EFLAGS: 00010206\n[4005007.702605] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffa82b46d27e68\n[4005007.702609] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffff9940656e0000\n[4005007.702612] RBP: ffffa82b46d27dd8 R08: 0000000000000000 R09: ffff994060c07980\n[4005007.702615] R10: 0000000000020000 R11: 0000000000000000 R12: 00007f5e06753000\n[4005007.702618] R13: ffff9940656e0000 R14: ffffa82b46d27e68 R15: 00007f5e06753000\n[4005007.702622] FS: 00007f5e0755b740(0000) GS:ffff99479d300000(0000) knlGS:0000000000000000\n[4005007.702626] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[4005007.702629] CR2: ffffffffffffffd6 CR3: 00000003253fc000 CR4: 00000000003506e0\n[4005007.702633] Call Trace:\n[4005007.702636] \u003cTASK\u003e\n[4005007.702640] amdgpu_debugfs_regs_smc_read+0xb0/0x120 [amdgpu]\n[4005007.703002] full_proxy_read+0x5c/0x80\n[4005007.703011] vfs_read+0x9f/0x1a0\n[4005007.703019] ksys_read+0x67/0xe0\n[4005007.703023] __x64_sys_read+0x19/0x20\n[4005007.703028] do_syscall_64+0x5c/0xc0\n[4005007.703034] ? do_user_addr_fault+0x1e3/0x670\n[4005007.703040] ? exit_to_user_mode_prepare+0x37/0xb0\n[4005007.703047] ? irqentry_exit_to_user_mode+0x9/0x20\n[4005007.703052] ? irqentry_exit+0x19/0x30\n[4005007.703057] ? exc_page_fault+0x89/0x160\n[4005007.703062] ? asm_exc_page_fault+0x8/0x30\n[4005007.703068] entry_SYSCALL_64_after_hwframe+0x44/0xae\n[4005007.703075] RIP: 0033:0x7f5e07672992\n[4005007.703079] Code: c0 e9 b2 fe ff ff 50 48 8d 3d fa b2 0c 00 e8 c5 1d 02 00 0f 1f 44 00 00 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 56 c3 0f 1f 44 00 00 48 83 e c 28 48 89 54 24\n[4005007.703083] RSP: 002b:00007ffe03097898 EFLAGS: 00000246 ORIG_RAX: 0000000000000000\n[4005007.703088] RAX: ffffffffffffffda RBX: 0000000000020000 RCX: 00007f5e07672992\n[4005007.703091] RDX: 0000000000020000 RSI: 00007f5e06753000 RDI: 0000000000000003\n[4005007.703094] RBP: 00007f5e06753000 R08: 00007f5e06752010 R09: 00007f5e06752010\n[4005007.703096] R10: 0000000000000022 R11: 0000000000000246 R12: 0000000000022000\n[4005007.703099] R13: 0000000000000003 R14: 0000000000020000 R15: 0000000000020000\n[4005007.703105] \u003c/TASK\u003e\n[4005007.703107] Modules linked in: nf_tables libcrc32c nfnetlink algif_hash af_alg binfmt_misc nls_ iso8859_1 ipmi_ssif ast intel_rapl_msr intel_rapl_common drm_vram_helper drm_ttm_helper amd64_edac t tm edac_mce_amd kvm_amd ccp mac_hid k10temp kvm acpi_ipmi ipmi_si rapl sch_fq_codel ipmi_devintf ipm i_msghandler msr parport_pc ppdev lp parport mtd pstore_blk efi_pstore ramoops pstore_zone reed_solo mon ip_tables x_tables autofs4 ib_uverbs ib_core amdgpu(OE) amddrm_ttm_helper(OE) amdttm(OE) iommu_v 2 amd_sched(OE) amdkcl(OE) drm_kms_helper syscopyarea sysfillrect sysimgblt fb_sys_fops cec rc_core drm igb ahci xhci_pci libahci i2c_piix4 i2c_algo_bit xhci_pci_renesas dca\n[4005007.703184] CR2: 0000000000000000\n[4005007.703188] ---[ en\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52817",
"url": "https://www.suse.com/security/cve/CVE-2023-52817"
},
{
"category": "external",
"summary": "SUSE Bug 1225569 for CVE-2023-52817",
"url": "https://bugzilla.suse.com/1225569"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52817"
},
{
"cve": "CVE-2023-52818",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52818"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd: Fix UBSAN array-index-out-of-bounds for SMU7\n\nFor pptable structs that use flexible array sizes, use flexible arrays.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52818",
"url": "https://www.suse.com/security/cve/CVE-2023-52818"
},
{
"category": "external",
"summary": "SUSE Bug 1225530 for CVE-2023-52818",
"url": "https://bugzilla.suse.com/1225530"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52818"
},
{
"cve": "CVE-2023-52819",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52819"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd: Fix UBSAN array-index-out-of-bounds for Polaris and Tonga\n\nFor pptable structs that use flexible array sizes, use flexible arrays.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52819",
"url": "https://www.suse.com/security/cve/CVE-2023-52819"
},
{
"category": "external",
"summary": "SUSE Bug 1225532 for CVE-2023-52819",
"url": "https://bugzilla.suse.com/1225532"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52819"
},
{
"cve": "CVE-2023-52821",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52821"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/panel: fix a possible null pointer dereference\n\nIn versatile_panel_get_modes(), the return value of drm_mode_duplicate()\nis assigned to mode, which will lead to a NULL pointer dereference\non failure of drm_mode_duplicate(). Add a check to avoid npd.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52821",
"url": "https://www.suse.com/security/cve/CVE-2023-52821"
},
{
"category": "external",
"summary": "SUSE Bug 1225022 for CVE-2023-52821",
"url": "https://bugzilla.suse.com/1225022"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52821"
},
{
"cve": "CVE-2023-52825",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52825"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdkfd: Fix a race condition of vram buffer unref in svm code\n\nprange-\u003esvm_bo unref can happen in both mmu callback and a callback after\nmigrate to system ram. Both are async call in different tasks. Sync svm_bo\nunref operation to avoid random \"use-after-free\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52825",
"url": "https://www.suse.com/security/cve/CVE-2023-52825"
},
{
"category": "external",
"summary": "SUSE Bug 1225076 for CVE-2023-52825",
"url": "https://bugzilla.suse.com/1225076"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52825"
},
{
"cve": "CVE-2023-52826",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52826"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/panel/panel-tpo-tpg110: fix a possible null pointer dereference\n\nIn tpg110_get_modes(), the return value of drm_mode_duplicate() is\nassigned to mode, which will lead to a NULL pointer dereference on\nfailure of drm_mode_duplicate(). Add a check to avoid npd.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52826",
"url": "https://www.suse.com/security/cve/CVE-2023-52826"
},
{
"category": "external",
"summary": "SUSE Bug 1225077 for CVE-2023-52826",
"url": "https://bugzilla.suse.com/1225077"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52826"
},
{
"cve": "CVE-2023-52827",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52827"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix possible out-of-bound read in ath12k_htt_pull_ppdu_stats()\n\nlen is extracted from HTT message and could be an unexpected value in\ncase errors happen, so add validation before using to avoid possible\nout-of-bound read in the following message iteration and parsing.\n\nThe same issue also applies to ppdu_info-\u003eppdu_stats.common.num_users,\nso validate it before using too.\n\nThese are found during code review.\n\nCompile test only.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52827",
"url": "https://www.suse.com/security/cve/CVE-2023-52827"
},
{
"category": "external",
"summary": "SUSE Bug 1225078 for CVE-2023-52827",
"url": "https://bugzilla.suse.com/1225078"
},
{
"category": "external",
"summary": "SUSE Bug 1227321 for CVE-2023-52827",
"url": "https://bugzilla.suse.com/1227321"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "important"
}
],
"title": "CVE-2023-52827"
},
{
"cve": "CVE-2023-52829",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52829"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix possible out-of-bound write in ath12k_wmi_ext_hal_reg_caps()\n\nreg_cap.phy_id is extracted from WMI event and could be an unexpected value\nin case some errors happen. As a result out-of-bound write may occur to\nsoc-\u003ehal_reg_cap. Fix it by validating reg_cap.phy_id before using it.\n\nThis is found during code review.\n\nCompile tested only.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52829",
"url": "https://www.suse.com/security/cve/CVE-2023-52829"
},
{
"category": "external",
"summary": "SUSE Bug 1225081 for CVE-2023-52829",
"url": "https://bugzilla.suse.com/1225081"
},
{
"category": "external",
"summary": "SUSE Bug 1227474 for CVE-2023-52829",
"url": "https://bugzilla.suse.com/1227474"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "important"
}
],
"title": "CVE-2023-52829"
},
{
"cve": "CVE-2023-52832",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52832"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mac80211: don\u0027t return unset power in ieee80211_get_tx_power()\n\nWe can get a UBSAN warning if ieee80211_get_tx_power() returns the\nINT_MIN value mac80211 internally uses for \"unset power level\".\n\n UBSAN: signed-integer-overflow in net/wireless/nl80211.c:3816:5\n -2147483648 * 100 cannot be represented in type \u0027int\u0027\n CPU: 0 PID: 20433 Comm: insmod Tainted: G WC OE\n Call Trace:\n dump_stack+0x74/0x92\n ubsan_epilogue+0x9/0x50\n handle_overflow+0x8d/0xd0\n __ubsan_handle_mul_overflow+0xe/0x10\n nl80211_send_iface+0x688/0x6b0 [cfg80211]\n [...]\n cfg80211_register_wdev+0x78/0xb0 [cfg80211]\n cfg80211_netdev_notifier_call+0x200/0x620 [cfg80211]\n [...]\n ieee80211_if_add+0x60e/0x8f0 [mac80211]\n ieee80211_register_hw+0xda5/0x1170 [mac80211]\n\nIn this case, simply return an error instead, to indicate\nthat no data is available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52832",
"url": "https://www.suse.com/security/cve/CVE-2023-52832"
},
{
"category": "external",
"summary": "SUSE Bug 1225577 for CVE-2023-52832",
"url": "https://bugzilla.suse.com/1225577"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52832"
},
{
"cve": "CVE-2023-52833",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52833"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btusb: Add date-\u003eevt_skb is NULL check\n\nfix crash because of null pointers\n\n[ 6104.969662] BUG: kernel NULL pointer dereference, address: 00000000000000c8\n[ 6104.969667] #PF: supervisor read access in kernel mode\n[ 6104.969668] #PF: error_code(0x0000) - not-present page\n[ 6104.969670] PGD 0 P4D 0\n[ 6104.969673] Oops: 0000 [#1] SMP NOPTI\n[ 6104.969684] RIP: 0010:btusb_mtk_hci_wmt_sync+0x144/0x220 [btusb]\n[ 6104.969688] RSP: 0018:ffffb8d681533d48 EFLAGS: 00010246\n[ 6104.969689] RAX: 0000000000000000 RBX: ffff8ad560bb2000 RCX: 0000000000000006\n[ 6104.969691] RDX: 0000000000000000 RSI: ffffb8d681533d08 RDI: 0000000000000000\n[ 6104.969692] RBP: ffffb8d681533d70 R08: 0000000000000001 R09: 0000000000000001\n[ 6104.969694] R10: 0000000000000001 R11: 00000000fa83b2da R12: ffff8ad461d1d7c0\n[ 6104.969695] R13: 0000000000000000 R14: ffff8ad459618c18 R15: ffffb8d681533d90\n[ 6104.969697] FS: 00007f5a1cab9d40(0000) GS:ffff8ad578200000(0000) knlGS:00000\n[ 6104.969699] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 6104.969700] CR2: 00000000000000c8 CR3: 000000018620c001 CR4: 0000000000760ef0\n[ 6104.969701] PKRU: 55555554\n[ 6104.969702] Call Trace:\n[ 6104.969708] btusb_mtk_shutdown+0x44/0x80 [btusb]\n[ 6104.969732] hci_dev_do_close+0x470/0x5c0 [bluetooth]\n[ 6104.969748] hci_rfkill_set_block+0x56/0xa0 [bluetooth]\n[ 6104.969753] rfkill_set_block+0x92/0x160\n[ 6104.969755] rfkill_fop_write+0x136/0x1e0\n[ 6104.969759] __vfs_write+0x18/0x40\n[ 6104.969761] vfs_write+0xdf/0x1c0\n[ 6104.969763] ksys_write+0xb1/0xe0\n[ 6104.969765] __x64_sys_write+0x1a/0x20\n[ 6104.969769] do_syscall_64+0x51/0x180\n[ 6104.969771] entry_SYSCALL_64_after_hwframe+0x44/0xa9\n[ 6104.969773] RIP: 0033:0x7f5a21f18fef\n[ 6104.9] RSP: 002b:00007ffeefe39010 EFLAGS: 00000293 ORIG_RAX: 0000000000000001\n[ 6104.969780] RAX: ffffffffffffffda RBX: 000055c10a7560a0 RCX: 00007f5a21f18fef\n[ 6104.969781] RDX: 0000000000000008 RSI: 00007ffeefe39060 RDI: 0000000000000012\n[ 6104.969782] RBP: 00007ffeefe39060 R08: 0000000000000000 R09: 0000000000000017\n[ 6104.969784] R10: 00007ffeefe38d97 R11: 0000000000000293 R12: 0000000000000002\n[ 6104.969785] R13: 00007ffeefe39220 R14: 00007ffeefe391a0 R15: 000055c10a72acf0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52833",
"url": "https://www.suse.com/security/cve/CVE-2023-52833"
},
{
"category": "external",
"summary": "SUSE Bug 1225595 for CVE-2023-52833",
"url": "https://bugzilla.suse.com/1225595"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52833"
},
{
"cve": "CVE-2023-52834",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52834"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\natl1c: Work around the DMA RX overflow issue\n\nThis is based on alx driver commit 881d0327db37 (\"net: alx: Work around\nthe DMA RX overflow issue\").\n\nThe alx and atl1c drivers had RX overflow error which was why a custom\nallocator was created to avoid certain addresses. The simpler workaround\nthen created for alx driver, but not for atl1c due to lack of tester.\n\nInstead of using a custom allocator, check the allocated skb address and\nuse skb_reserve() to move away from problematic 0x...fc0 address.\n\nTested on AR8131 on Acer 4540.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52834",
"url": "https://www.suse.com/security/cve/CVE-2023-52834"
},
{
"category": "external",
"summary": "SUSE Bug 1225599 for CVE-2023-52834",
"url": "https://bugzilla.suse.com/1225599"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52834"
},
{
"cve": "CVE-2023-52835",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52835"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf/core: Bail out early if the request AUX area is out of bound\n\nWhen perf-record with a large AUX area, e.g 4GB, it fails with:\n\n #perf record -C 0 -m ,4G -e arm_spe_0// -- sleep 1\n failed to mmap with 12 (Cannot allocate memory)\n\nand it reveals a WARNING with __alloc_pages():\n\n\t------------[ cut here ]------------\n\tWARNING: CPU: 44 PID: 17573 at mm/page_alloc.c:5568 __alloc_pages+0x1ec/0x248\n\tCall trace:\n\t __alloc_pages+0x1ec/0x248\n\t __kmalloc_large_node+0xc0/0x1f8\n\t __kmalloc_node+0x134/0x1e8\n\t rb_alloc_aux+0xe0/0x298\n\t perf_mmap+0x440/0x660\n\t mmap_region+0x308/0x8a8\n\t do_mmap+0x3c0/0x528\n\t vm_mmap_pgoff+0xf4/0x1b8\n\t ksys_mmap_pgoff+0x18c/0x218\n\t __arm64_sys_mmap+0x38/0x58\n\t invoke_syscall+0x50/0x128\n\t el0_svc_common.constprop.0+0x58/0x188\n\t do_el0_svc+0x34/0x50\n\t el0_svc+0x34/0x108\n\t el0t_64_sync_handler+0xb8/0xc0\n\t el0t_64_sync+0x1a4/0x1a8\n\n\u0027rb-\u003eaux_pages\u0027 allocated by kcalloc() is a pointer array which is used to\nmaintains AUX trace pages. The allocated page for this array is physically\ncontiguous (and virtually contiguous) with an order of 0..MAX_ORDER. If the\nsize of pointer array crosses the limitation set by MAX_ORDER, it reveals a\nWARNING.\n\nSo bail out early with -ENOMEM if the request AUX area is out of bound,\ne.g.:\n\n #perf record -C 0 -m ,4G -e arm_spe_0// -- sleep 1\n failed to mmap with 12 (Cannot allocate memory)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52835",
"url": "https://www.suse.com/security/cve/CVE-2023-52835"
},
{
"category": "external",
"summary": "SUSE Bug 1225602 for CVE-2023-52835",
"url": "https://bugzilla.suse.com/1225602"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "low"
}
],
"title": "CVE-2023-52835"
},
{
"cve": "CVE-2023-52836",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52836"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlocking/ww_mutex/test: Fix potential workqueue corruption\n\nIn some cases running with the test-ww_mutex code, I was seeing\nodd behavior where sometimes it seemed flush_workqueue was\nreturning before all the work threads were finished.\n\nOften this would cause strange crashes as the mutexes would be\nfreed while they were being used.\n\nLooking at the code, there is a lifetime problem as the\ncontrolling thread that spawns the work allocates the\n\"struct stress\" structures that are passed to the workqueue\nthreads. Then when the workqueue threads are finished,\nthey free the stress struct that was passed to them.\n\nUnfortunately the workqueue work_struct node is in the stress\nstruct. Which means the work_struct is freed before the work\nthread returns and while flush_workqueue is waiting.\n\nIt seems like a better idea to have the controlling thread\nboth allocate and free the stress structures, so that we can\nbe sure we don\u0027t corrupt the workqueue by freeing the structure\nprematurely.\n\nSo this patch reworks the test to do so, and with this change\nI no longer see the early flush_workqueue returns.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52836",
"url": "https://www.suse.com/security/cve/CVE-2023-52836"
},
{
"category": "external",
"summary": "SUSE Bug 1225609 for CVE-2023-52836",
"url": "https://bugzilla.suse.com/1225609"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "low"
}
],
"title": "CVE-2023-52836"
},
{
"cve": "CVE-2023-52837",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52837"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnbd: fix uaf in nbd_open\n\nCommit 4af5f2e03013 (\"nbd: use blk_mq_alloc_disk and\nblk_cleanup_disk\") cleans up disk by blk_cleanup_disk() and it won\u0027t set\ndisk-\u003eprivate_data as NULL as before. UAF may be triggered in nbd_open()\nif someone tries to open nbd device right after nbd_put() since nbd has\nbeen free in nbd_dev_remove().\n\nFix this by implementing -\u003efree_disk and free private data in it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52837",
"url": "https://www.suse.com/security/cve/CVE-2023-52837"
},
{
"category": "external",
"summary": "SUSE Bug 1224935 for CVE-2023-52837",
"url": "https://bugzilla.suse.com/1224935"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52837"
},
{
"cve": "CVE-2023-52838",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52838"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: imsttfb: fix a resource leak in probe\n\nI\u0027ve re-written the error handling but the bug is that if init_imstt()\nfails we need to call iounmap(par-\u003ecmap_regs).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52838",
"url": "https://www.suse.com/security/cve/CVE-2023-52838"
},
{
"category": "external",
"summary": "SUSE Bug 1225031 for CVE-2023-52838",
"url": "https://bugzilla.suse.com/1225031"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "low"
}
],
"title": "CVE-2023-52838"
},
{
"cve": "CVE-2023-52840",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52840"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: synaptics-rmi4 - fix use after free in rmi_unregister_function()\n\nThe put_device() calls rmi_release_function() which frees \"fn\" so the\ndereference on the next line \"fn-\u003enum_of_irqs\" is a use after free.\nMove the put_device() to the end to fix this.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52840",
"url": "https://www.suse.com/security/cve/CVE-2023-52840"
},
{
"category": "external",
"summary": "SUSE Bug 1224928 for CVE-2023-52840",
"url": "https://bugzilla.suse.com/1224928"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52840"
},
{
"cve": "CVE-2023-52841",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52841"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: vidtv: mux: Add check and kfree for kstrdup\n\nAdd check for the return value of kstrdup() and return the error\nif it fails in order to avoid NULL pointer dereference.\nMoreover, use kfree() in the later error handling in order to avoid\nmemory leak.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52841",
"url": "https://www.suse.com/security/cve/CVE-2023-52841"
},
{
"category": "external",
"summary": "SUSE Bug 1225592 for CVE-2023-52841",
"url": "https://bugzilla.suse.com/1225592"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52841"
},
{
"cve": "CVE-2023-52842",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52842"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio/vsock: Fix uninit-value in virtio_transport_recv_pkt()\n\nKMSAN reported the following uninit-value access issue:\n\n=====================================================\nBUG: KMSAN: uninit-value in virtio_transport_recv_pkt+0x1dfb/0x26a0 net/vmw_vsock/virtio_transport_common.c:1421\n virtio_transport_recv_pkt+0x1dfb/0x26a0 net/vmw_vsock/virtio_transport_common.c:1421\n vsock_loopback_work+0x3bb/0x5a0 net/vmw_vsock/vsock_loopback.c:120\n process_one_work kernel/workqueue.c:2630 [inline]\n process_scheduled_works+0xff6/0x1e60 kernel/workqueue.c:2703\n worker_thread+0xeca/0x14d0 kernel/workqueue.c:2784\n kthread+0x3cc/0x520 kernel/kthread.c:388\n ret_from_fork+0x66/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x11/0x20 arch/x86/entry/entry_64.S:304\n\nUninit was stored to memory at:\n virtio_transport_space_update net/vmw_vsock/virtio_transport_common.c:1274 [inline]\n virtio_transport_recv_pkt+0x1ee8/0x26a0 net/vmw_vsock/virtio_transport_common.c:1415\n vsock_loopback_work+0x3bb/0x5a0 net/vmw_vsock/vsock_loopback.c:120\n process_one_work kernel/workqueue.c:2630 [inline]\n process_scheduled_works+0xff6/0x1e60 kernel/workqueue.c:2703\n worker_thread+0xeca/0x14d0 kernel/workqueue.c:2784\n kthread+0x3cc/0x520 kernel/kthread.c:388\n ret_from_fork+0x66/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x11/0x20 arch/x86/entry/entry_64.S:304\n\nUninit was created at:\n slab_post_alloc_hook+0x105/0xad0 mm/slab.h:767\n slab_alloc_node mm/slub.c:3478 [inline]\n kmem_cache_alloc_node+0x5a2/0xaf0 mm/slub.c:3523\n kmalloc_reserve+0x13c/0x4a0 net/core/skbuff.c:559\n __alloc_skb+0x2fd/0x770 net/core/skbuff.c:650\n alloc_skb include/linux/skbuff.h:1286 [inline]\n virtio_vsock_alloc_skb include/linux/virtio_vsock.h:66 [inline]\n virtio_transport_alloc_skb+0x90/0x11e0 net/vmw_vsock/virtio_transport_common.c:58\n virtio_transport_reset_no_sock net/vmw_vsock/virtio_transport_common.c:957 [inline]\n virtio_transport_recv_pkt+0x1279/0x26a0 net/vmw_vsock/virtio_transport_common.c:1387\n vsock_loopback_work+0x3bb/0x5a0 net/vmw_vsock/vsock_loopback.c:120\n process_one_work kernel/workqueue.c:2630 [inline]\n process_scheduled_works+0xff6/0x1e60 kernel/workqueue.c:2703\n worker_thread+0xeca/0x14d0 kernel/workqueue.c:2784\n kthread+0x3cc/0x520 kernel/kthread.c:388\n ret_from_fork+0x66/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x11/0x20 arch/x86/entry/entry_64.S:304\n\nCPU: 1 PID: 10664 Comm: kworker/1:5 Not tainted 6.6.0-rc3-00146-g9f3ebbef746f #3\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.2-1.fc38 04/01/2014\nWorkqueue: vsock-loopback vsock_loopback_work\n=====================================================\n\nThe following simple reproducer can cause the issue described above:\n\nint main(void)\n{\n int sock;\n struct sockaddr_vm addr = {\n .svm_family = AF_VSOCK,\n .svm_cid = VMADDR_CID_ANY,\n .svm_port = 1234,\n };\n\n sock = socket(AF_VSOCK, SOCK_STREAM, 0);\n connect(sock, (struct sockaddr *)\u0026addr, sizeof(addr));\n return 0;\n}\n\nThis issue occurs because the `buf_alloc` and `fwd_cnt` fields of the\n`struct virtio_vsock_hdr` are not initialized when a new skb is allocated\nin `virtio_transport_init_hdr()`. This patch resolves the issue by\ninitializing these fields during allocation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52842",
"url": "https://www.suse.com/security/cve/CVE-2023-52842"
},
{
"category": "external",
"summary": "SUSE Bug 1225025 for CVE-2023-52842",
"url": "https://bugzilla.suse.com/1225025"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52842"
},
{
"cve": "CVE-2023-52843",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52843"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nllc: verify mac len before reading mac header\n\nLLC reads the mac header with eth_hdr without verifying that the skb\nhas an Ethernet header.\n\nSyzbot was able to enter llc_rcv on a tun device. Tun can insert\npackets without mac len and with user configurable skb-\u003eprotocol\n(passing a tun_pi header when not configuring IFF_NO_PI).\n\n BUG: KMSAN: uninit-value in llc_station_ac_send_test_r net/llc/llc_station.c:81 [inline]\n BUG: KMSAN: uninit-value in llc_station_rcv+0x6fb/0x1290 net/llc/llc_station.c:111\n llc_station_ac_send_test_r net/llc/llc_station.c:81 [inline]\n llc_station_rcv+0x6fb/0x1290 net/llc/llc_station.c:111\n llc_rcv+0xc5d/0x14a0 net/llc/llc_input.c:218\n __netif_receive_skb_one_core net/core/dev.c:5523 [inline]\n __netif_receive_skb+0x1a6/0x5a0 net/core/dev.c:5637\n netif_receive_skb_internal net/core/dev.c:5723 [inline]\n netif_receive_skb+0x58/0x660 net/core/dev.c:5782\n tun_rx_batched+0x3ee/0x980 drivers/net/tun.c:1555\n tun_get_user+0x54c5/0x69c0 drivers/net/tun.c:2002\n\nAdd a mac_len test before all three eth_hdr(skb) calls under net/llc.\n\nThere are further uses in include/net/llc_pdu.h. All these are\nprotected by a test skb-\u003eprotocol == ETH_P_802_2. Which does not\nprotect against this tun scenario.\n\nBut the mac_len test added in this patch in llc_fixup_skb will\nindirectly protect those too. That is called from llc_rcv before any\nother LLC code.\n\nIt is tempting to just add a blanket mac_len check in llc_rcv, but\nnot sure whether that could break valid LLC paths that do not assume\nan Ethernet header. 802.2 LLC may be used on top of non-802.3\nprotocols in principle. The below referenced commit shows that used\nto, on top of Token Ring.\n\nAt least one of the three eth_hdr uses goes back to before the start\nof git history. But the one that syzbot exercises is introduced in\nthis commit. That commit is old enough (2008), that effectively all\nstable kernels should receive this.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52843",
"url": "https://www.suse.com/security/cve/CVE-2023-52843"
},
{
"category": "external",
"summary": "SUSE Bug 1224951 for CVE-2023-52843",
"url": "https://bugzilla.suse.com/1224951"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52843"
},
{
"cve": "CVE-2023-52844",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52844"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: vidtv: psi: Add check for kstrdup\n\nAdd check for the return value of kstrdup() and return the error\nif it fails in order to avoid NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52844",
"url": "https://www.suse.com/security/cve/CVE-2023-52844"
},
{
"category": "external",
"summary": "SUSE Bug 1225590 for CVE-2023-52844",
"url": "https://bugzilla.suse.com/1225590"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52844"
},
{
"cve": "CVE-2023-52845",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52845"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntipc: Change nla_policy for bearer-related names to NLA_NUL_STRING\n\nsyzbot reported the following uninit-value access issue [1]:\n\n=====================================================\nBUG: KMSAN: uninit-value in strlen lib/string.c:418 [inline]\nBUG: KMSAN: uninit-value in strstr+0xb8/0x2f0 lib/string.c:756\n strlen lib/string.c:418 [inline]\n strstr+0xb8/0x2f0 lib/string.c:756\n tipc_nl_node_reset_link_stats+0x3ea/0xb50 net/tipc/node.c:2595\n genl_family_rcv_msg_doit net/netlink/genetlink.c:971 [inline]\n genl_family_rcv_msg net/netlink/genetlink.c:1051 [inline]\n genl_rcv_msg+0x11ec/0x1290 net/netlink/genetlink.c:1066\n netlink_rcv_skb+0x371/0x650 net/netlink/af_netlink.c:2545\n genl_rcv+0x40/0x60 net/netlink/genetlink.c:1075\n netlink_unicast_kernel net/netlink/af_netlink.c:1342 [inline]\n netlink_unicast+0xf47/0x1250 net/netlink/af_netlink.c:1368\n netlink_sendmsg+0x1238/0x13d0 net/netlink/af_netlink.c:1910\n sock_sendmsg_nosec net/socket.c:730 [inline]\n sock_sendmsg net/socket.c:753 [inline]\n ____sys_sendmsg+0x9c2/0xd60 net/socket.c:2541\n ___sys_sendmsg+0x28d/0x3c0 net/socket.c:2595\n __sys_sendmsg net/socket.c:2624 [inline]\n __do_sys_sendmsg net/socket.c:2633 [inline]\n __se_sys_sendmsg net/socket.c:2631 [inline]\n __x64_sys_sendmsg+0x307/0x490 net/socket.c:2631\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nUninit was created at:\n slab_post_alloc_hook+0x12f/0xb70 mm/slab.h:767\n slab_alloc_node mm/slub.c:3478 [inline]\n kmem_cache_alloc_node+0x577/0xa80 mm/slub.c:3523\n kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:559\n __alloc_skb+0x318/0x740 net/core/skbuff.c:650\n alloc_skb include/linux/skbuff.h:1286 [inline]\n netlink_alloc_large_skb net/netlink/af_netlink.c:1214 [inline]\n netlink_sendmsg+0xb34/0x13d0 net/netlink/af_netlink.c:1885\n sock_sendmsg_nosec net/socket.c:730 [inline]\n sock_sendmsg net/socket.c:753 [inline]\n ____sys_sendmsg+0x9c2/0xd60 net/socket.c:2541\n ___sys_sendmsg+0x28d/0x3c0 net/socket.c:2595\n __sys_sendmsg net/socket.c:2624 [inline]\n __do_sys_sendmsg net/socket.c:2633 [inline]\n __se_sys_sendmsg net/socket.c:2631 [inline]\n __x64_sys_sendmsg+0x307/0x490 net/socket.c:2631\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nTIPC bearer-related names including link names must be null-terminated\nstrings. If a link name which is not null-terminated is passed through\nnetlink, strstr() and similar functions can cause buffer overrun. This\ncauses the above issue.\n\nThis patch changes the nla_policy for bearer-related names from NLA_STRING\nto NLA_NUL_STRING. This resolves the issue by ensuring that only\nnull-terminated strings are accepted as bearer-related names.\n\nsyzbot reported similar uninit-value issue related to bearer names [2]. The\nroot cause of this issue is that a non-null-terminated bearer name was\npassed. This patch also resolved this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52845",
"url": "https://www.suse.com/security/cve/CVE-2023-52845"
},
{
"category": "external",
"summary": "SUSE Bug 1225585 for CVE-2023-52845",
"url": "https://bugzilla.suse.com/1225585"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52845"
},
{
"cve": "CVE-2023-52846",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52846"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhsr: Prevent use after free in prp_create_tagged_frame()\n\nThe prp_fill_rct() function can fail. In that situation, it frees the\nskb and returns NULL. Meanwhile on the success path, it returns the\noriginal skb. So it\u0027s straight forward to fix bug by using the returned\nvalue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52846",
"url": "https://www.suse.com/security/cve/CVE-2023-52846"
},
{
"category": "external",
"summary": "SUSE Bug 1225098 for CVE-2023-52846",
"url": "https://bugzilla.suse.com/1225098"
},
{
"category": "external",
"summary": "SUSE Bug 1225099 for CVE-2023-52846",
"url": "https://bugzilla.suse.com/1225099"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52846"
},
{
"cve": "CVE-2023-52847",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52847"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: bttv: fix use after free error due to btv-\u003etimeout timer\n\nThere may be some a race condition between timer function\nbttv_irq_timeout and bttv_remove. The timer is setup in\nprobe and there is no timer_delete operation in remove\nfunction. When it hit kfree btv, the function might still be\ninvoked, which will cause use after free bug.\n\nThis bug is found by static analysis, it may be false positive.\n\nFix it by adding del_timer_sync invoking to the remove function.\n\ncpu0 cpu1\n bttv_probe\n -\u003etimer_setup\n -\u003ebttv_set_dma\n -\u003emod_timer;\nbttv_remove\n -\u003ekfree(btv);\n -\u003ebttv_irq_timeout\n -\u003eUSE btv",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52847",
"url": "https://www.suse.com/security/cve/CVE-2023-52847"
},
{
"category": "external",
"summary": "SUSE Bug 1225588 for CVE-2023-52847",
"url": "https://bugzilla.suse.com/1225588"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52847"
},
{
"cve": "CVE-2023-52849",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52849"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncxl/mem: Fix shutdown order\n\nIra reports that removing cxl_mock_mem causes a crash with the following\ntrace:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000044\n [..]\n RIP: 0010:cxl_region_decode_reset+0x7f/0x180 [cxl_core]\n [..]\n Call Trace:\n \u003cTASK\u003e\n cxl_region_detach+0xe8/0x210 [cxl_core]\n cxl_decoder_kill_region+0x27/0x40 [cxl_core]\n cxld_unregister+0x29/0x40 [cxl_core]\n devres_release_all+0xb8/0x110\n device_unbind_cleanup+0xe/0x70\n device_release_driver_internal+0x1d2/0x210\n bus_remove_device+0xd7/0x150\n device_del+0x155/0x3e0\n device_unregister+0x13/0x60\n devm_release_action+0x4d/0x90\n ? __pfx_unregister_port+0x10/0x10 [cxl_core]\n delete_endpoint+0x121/0x130 [cxl_core]\n devres_release_all+0xb8/0x110\n device_unbind_cleanup+0xe/0x70\n device_release_driver_internal+0x1d2/0x210\n bus_remove_device+0xd7/0x150\n device_del+0x155/0x3e0\n ? lock_release+0x142/0x290\n cdev_device_del+0x15/0x50\n cxl_memdev_unregister+0x54/0x70 [cxl_core]\n\nThis crash is due to the clearing out the cxl_memdev\u0027s driver context\n(@cxlds) before the subsystem is done with it. This is ultimately due to\nthe region(s), that this memdev is a member, being torn down and expecting\nto be able to de-reference @cxlds, like here:\n\nstatic int cxl_region_decode_reset(struct cxl_region *cxlr, int count)\n...\n if (cxlds-\u003ercd)\n goto endpoint_reset;\n...\n\nFix it by keeping the driver context valid until memdev-device\nunregistration, and subsequently the entire stack of related\ndependencies, unwinds.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52849",
"url": "https://www.suse.com/security/cve/CVE-2023-52849"
},
{
"category": "external",
"summary": "SUSE Bug 1224949 for CVE-2023-52849",
"url": "https://bugzilla.suse.com/1224949"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52849"
},
{
"cve": "CVE-2023-52850",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52850"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: hantro: Check whether reset op is defined before use\n\nThe i.MX8MM/N/P does not define the .reset op since reset of the VPU is\ndone by genpd. Check whether the .reset op is defined before calling it\nto avoid NULL pointer dereference.\n\nNote that the Fixes tag is set to the commit which removed the reset op\nfrom i.MX8M Hantro G2 implementation, this is because before this commit\nall the implementations did define the .reset op.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52850",
"url": "https://www.suse.com/security/cve/CVE-2023-52850"
},
{
"category": "external",
"summary": "SUSE Bug 1225014 for CVE-2023-52850",
"url": "https://bugzilla.suse.com/1225014"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52850"
},
{
"cve": "CVE-2023-52851",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52851"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nIB/mlx5: Fix init stage error handling to avoid double free of same QP and UAF\n\nIn the unlikely event that workqueue allocation fails and returns NULL in\nmlx5_mkey_cache_init(), delete the call to\nmlx5r_umr_resource_cleanup() (which frees the QP) in\nmlx5_ib_stage_post_ib_reg_umr_init(). This will avoid attempted double\nfree of the same QP when __mlx5_ib_add() does its cleanup.\n\nResolves a splat:\n\n Syzkaller reported a UAF in ib_destroy_qp_user\n\n workqueue: Failed to create a rescuer kthread for wq \"mkey_cache\": -EINTR\n infiniband mlx5_0: mlx5_mkey_cache_init:981:(pid 1642):\n failed to create work queue\n infiniband mlx5_0: mlx5_ib_stage_post_ib_reg_umr_init:4075:(pid 1642):\n mr cache init failed -12\n ==================================================================\n BUG: KASAN: slab-use-after-free in ib_destroy_qp_user (drivers/infiniband/core/verbs.c:2073)\n Read of size 8 at addr ffff88810da310a8 by task repro_upstream/1642\n\n Call Trace:\n \u003cTASK\u003e\n kasan_report (mm/kasan/report.c:590)\n ib_destroy_qp_user (drivers/infiniband/core/verbs.c:2073)\n mlx5r_umr_resource_cleanup (drivers/infiniband/hw/mlx5/umr.c:198)\n __mlx5_ib_add (drivers/infiniband/hw/mlx5/main.c:4178)\n mlx5r_probe (drivers/infiniband/hw/mlx5/main.c:4402)\n ...\n \u003c/TASK\u003e\n\n Allocated by task 1642:\n __kmalloc (./include/linux/kasan.h:198 mm/slab_common.c:1026\n mm/slab_common.c:1039)\n create_qp (./include/linux/slab.h:603 ./include/linux/slab.h:720\n ./include/rdma/ib_verbs.h:2795 drivers/infiniband/core/verbs.c:1209)\n ib_create_qp_kernel (drivers/infiniband/core/verbs.c:1347)\n mlx5r_umr_resource_init (drivers/infiniband/hw/mlx5/umr.c:164)\n mlx5_ib_stage_post_ib_reg_umr_init (drivers/infiniband/hw/mlx5/main.c:4070)\n __mlx5_ib_add (drivers/infiniband/hw/mlx5/main.c:4168)\n mlx5r_probe (drivers/infiniband/hw/mlx5/main.c:4402)\n ...\n\n Freed by task 1642:\n __kmem_cache_free (mm/slub.c:1826 mm/slub.c:3809 mm/slub.c:3822)\n ib_destroy_qp_user (drivers/infiniband/core/verbs.c:2112)\n mlx5r_umr_resource_cleanup (drivers/infiniband/hw/mlx5/umr.c:198)\n mlx5_ib_stage_post_ib_reg_umr_init (drivers/infiniband/hw/mlx5/main.c:4076\n drivers/infiniband/hw/mlx5/main.c:4065)\n __mlx5_ib_add (drivers/infiniband/hw/mlx5/main.c:4168)\n mlx5r_probe (drivers/infiniband/hw/mlx5/main.c:4402)\n ...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52851",
"url": "https://www.suse.com/security/cve/CVE-2023-52851"
},
{
"category": "external",
"summary": "SUSE Bug 1225587 for CVE-2023-52851",
"url": "https://bugzilla.suse.com/1225587"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52851"
},
{
"cve": "CVE-2023-52853",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52853"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhid: cp2112: Fix duplicate workqueue initialization\n\nPreviously the cp2112 driver called INIT_DELAYED_WORK within\ncp2112_gpio_irq_startup, resulting in duplicate initilizations of the\nworkqueue on subsequent IRQ startups following an initial request. This\nresulted in a warning in set_work_data in workqueue.c, as well as a rare\nNULL dereference within process_one_work in workqueue.c.\n\nInitialize the workqueue within _probe instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52853",
"url": "https://www.suse.com/security/cve/CVE-2023-52853"
},
{
"category": "external",
"summary": "SUSE Bug 1224988 for CVE-2023-52853",
"url": "https://bugzilla.suse.com/1224988"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52853"
},
{
"cve": "CVE-2023-52854",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52854"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npadata: Fix refcnt handling in padata_free_shell()\n\nIn a high-load arm64 environment, the pcrypt_aead01 test in LTP can lead\nto system UAF (Use-After-Free) issues. Due to the lengthy analysis of\nthe pcrypt_aead01 function call, I\u0027ll describe the problem scenario\nusing a simplified model:\n\nSuppose there\u0027s a user of padata named `user_function` that adheres to\nthe padata requirement of calling `padata_free_shell` after `serial()`\nhas been invoked, as demonstrated in the following code:\n\n```c\nstruct request {\n struct padata_priv padata;\n struct completion *done;\n};\n\nvoid parallel(struct padata_priv *padata) {\n do_something();\n}\n\nvoid serial(struct padata_priv *padata) {\n struct request *request = container_of(padata,\n \t\t\t\tstruct request,\n\t\t\t\tpadata);\n complete(request-\u003edone);\n}\n\nvoid user_function() {\n DECLARE_COMPLETION(done)\n padata-\u003eparallel = parallel;\n padata-\u003eserial = serial;\n padata_do_parallel();\n wait_for_completion(\u0026done);\n padata_free_shell();\n}\n```\n\nIn the corresponding padata.c file, there\u0027s the following code:\n\n```c\nstatic void padata_serial_worker(struct work_struct *serial_work) {\n ...\n cnt = 0;\n\n while (!list_empty(\u0026local_list)) {\n ...\n padata-\u003eserial(padata);\n cnt++;\n }\n\n local_bh_enable();\n\n if (refcount_sub_and_test(cnt, \u0026pd-\u003erefcnt))\n padata_free_pd(pd);\n}\n```\n\nBecause of the high system load and the accumulation of unexecuted\nsoftirq at this moment, `local_bh_enable()` in padata takes longer\nto execute than usual. Subsequently, when accessing `pd-\u003erefcnt`,\n`pd` has already been released by `padata_free_shell()`, resulting\nin a UAF issue with `pd-\u003erefcnt`.\n\nThe fix is straightforward: add `refcount_dec_and_test` before calling\n`padata_free_pd` in `padata_free_shell`.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52854",
"url": "https://www.suse.com/security/cve/CVE-2023-52854"
},
{
"category": "external",
"summary": "SUSE Bug 1225584 for CVE-2023-52854",
"url": "https://bugzilla.suse.com/1225584"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52854"
},
{
"cve": "CVE-2023-52855",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52855"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc2: fix possible NULL pointer dereference caused by driver concurrency\n\nIn _dwc2_hcd_urb_enqueue(), \"urb-\u003ehcpriv = NULL\" is executed without\nholding the lock \"hsotg-\u003elock\". In _dwc2_hcd_urb_dequeue():\n\n spin_lock_irqsave(\u0026hsotg-\u003elock, flags);\n ...\n\tif (!urb-\u003ehcpriv) {\n\t\tdev_dbg(hsotg-\u003edev, \"## urb-\u003ehcpriv is NULL ##\\n\");\n\t\tgoto out;\n\t}\n rc = dwc2_hcd_urb_dequeue(hsotg, urb-\u003ehcpriv); // Use urb-\u003ehcpriv\n ...\nout:\n spin_unlock_irqrestore(\u0026hsotg-\u003elock, flags);\n\nWhen _dwc2_hcd_urb_enqueue() and _dwc2_hcd_urb_dequeue() are\nconcurrently executed, the NULL check of \"urb-\u003ehcpriv\" can be executed\nbefore \"urb-\u003ehcpriv = NULL\". After urb-\u003ehcpriv is NULL, it can be used\nin the function call to dwc2_hcd_urb_dequeue(), which can cause a NULL\npointer dereference.\n\nThis possible bug is found by an experimental static analysis tool\ndeveloped by myself. This tool analyzes the locking APIs to extract\nfunction pairs that can be concurrently executed, and then analyzes the\ninstructions in the paired functions to identify possible concurrency\nbugs including data races and atomicity violations. The above possible\nbug is reported, when my tool analyzes the source code of Linux 6.5.\n\nTo fix this possible bug, \"urb-\u003ehcpriv = NULL\" should be executed with\nholding the lock \"hsotg-\u003elock\". After using this patch, my tool never\nreports the possible bug, with the kernelconfiguration allyesconfig for\nx86_64. Because I have no associated hardware, I cannot test the patch\nin runtime testing, and just verify it according to the code logic.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52855",
"url": "https://www.suse.com/security/cve/CVE-2023-52855"
},
{
"category": "external",
"summary": "SUSE Bug 1225583 for CVE-2023-52855",
"url": "https://bugzilla.suse.com/1225583"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52855"
},
{
"cve": "CVE-2023-52856",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52856"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/bridge: lt8912b: Fix crash on bridge detach\n\nThe lt8912b driver, in its bridge detach function, calls\ndrm_connector_unregister() and drm_connector_cleanup().\n\ndrm_connector_unregister() should be called only for connectors\nexplicitly registered with drm_connector_register(), which is not the\ncase in lt8912b.\n\nThe driver\u0027s drm_connector_funcs.destroy hook is set to\ndrm_connector_cleanup().\n\nThus the driver should not call either drm_connector_unregister() nor\ndrm_connector_cleanup() in its lt8912_bridge_detach(), as they cause a\ncrash on bridge detach:\n\nUnable to handle kernel NULL pointer dereference at virtual address 0000000000000000\nMem abort info:\n ESR = 0x0000000096000006\n EC = 0x25: DABT (current EL), IL = 32 bits\n SET = 0, FnV = 0\n EA = 0, S1PTW = 0\n FSC = 0x06: level 2 translation fault\nData abort info:\n ISV = 0, ISS = 0x00000006, ISS2 = 0x00000000\n CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\nuser pgtable: 4k pages, 48-bit VAs, pgdp=00000000858f3000\n[0000000000000000] pgd=0800000085918003, p4d=0800000085918003, pud=0800000085431003, pmd=0000000000000000\nInternal error: Oops: 0000000096000006 [#1] PREEMPT SMP\nModules linked in: tidss(-) display_connector lontium_lt8912b tc358768 panel_lvds panel_simple drm_dma_helper drm_kms_helper drm drm_panel_orientation_quirks\nCPU: 3 PID: 462 Comm: rmmod Tainted: G W 6.5.0-rc2+ #2\nHardware name: Toradex Verdin AM62 on Verdin Development Board (DT)\npstate: 80000005 (Nzcv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : drm_connector_cleanup+0x78/0x2d4 [drm]\nlr : lt8912_bridge_detach+0x54/0x6c [lontium_lt8912b]\nsp : ffff800082ed3a90\nx29: ffff800082ed3a90 x28: ffff0000040c1940 x27: 0000000000000000\nx26: 0000000000000000 x25: dead000000000122 x24: dead000000000122\nx23: dead000000000100 x22: ffff000003fb6388 x21: 0000000000000000\nx20: 0000000000000000 x19: ffff000003fb6260 x18: fffffffffffe56e8\nx17: 0000000000000000 x16: 0010000000000000 x15: 0000000000000038\nx14: 0000000000000000 x13: ffff800081914b48 x12: 000000000000040e\nx11: 000000000000015a x10: ffff80008196ebb8 x9 : ffff800081914b48\nx8 : 00000000ffffefff x7 : ffff0000040c1940 x6 : ffff80007aa649d0\nx5 : 0000000000000000 x4 : 0000000000000001 x3 : ffff80008159e008\nx2 : 0000000000000000 x1 : 0000000000000000 x0 : 0000000000000000\nCall trace:\n drm_connector_cleanup+0x78/0x2d4 [drm]\n lt8912_bridge_detach+0x54/0x6c [lontium_lt8912b]\n drm_bridge_detach+0x44/0x84 [drm]\n drm_encoder_cleanup+0x40/0xb8 [drm]\n drmm_encoder_alloc_release+0x1c/0x30 [drm]\n drm_managed_release+0xac/0x148 [drm]\n drm_dev_put.part.0+0x88/0xb8 [drm]\n devm_drm_dev_init_release+0x14/0x24 [drm]\n devm_action_release+0x14/0x20\n release_nodes+0x5c/0x90\n devres_release_all+0x8c/0xe0\n device_unbind_cleanup+0x18/0x68\n device_release_driver_internal+0x208/0x23c\n driver_detach+0x4c/0x94\n bus_remove_driver+0x70/0xf4\n driver_unregister+0x30/0x60\n platform_driver_unregister+0x14/0x20\n tidss_platform_driver_exit+0x18/0xb2c [tidss]\n __arm64_sys_delete_module+0x1a0/0x2b4\n invoke_syscall+0x48/0x110\n el0_svc_common.constprop.0+0x60/0x10c\n do_el0_svc_compat+0x1c/0x40\n el0_svc_compat+0x40/0xac\n el0t_32_sync_handler+0xb0/0x138\n el0t_32_sync+0x194/0x198\nCode: 9104a276 f2fbd5b7 aa0203e1 91008af8 (f85c0420)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52856",
"url": "https://www.suse.com/security/cve/CVE-2023-52856"
},
{
"category": "external",
"summary": "SUSE Bug 1224932 for CVE-2023-52856",
"url": "https://bugzilla.suse.com/1224932"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52856"
},
{
"cve": "CVE-2023-52857",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52857"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/mediatek: Fix coverity issue with unintentional integer overflow\n\n1. Instead of multiplying 2 variable of different types. Change to\nassign a value of one variable and then multiply the other variable.\n\n2. Add a int variable for multiplier calculation instead of calculating\ndifferent types multiplier with dma_addr_t variable directly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52857",
"url": "https://www.suse.com/security/cve/CVE-2023-52857"
},
{
"category": "external",
"summary": "SUSE Bug 1225581 for CVE-2023-52857",
"url": "https://bugzilla.suse.com/1225581"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52857"
},
{
"cve": "CVE-2023-52858",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52858"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: mediatek: clk-mt7629: Add check for mtk_alloc_clk_data\n\nAdd the check for the return value of mtk_alloc_clk_data() in order to\navoid NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52858",
"url": "https://www.suse.com/security/cve/CVE-2023-52858"
},
{
"category": "external",
"summary": "SUSE Bug 1225566 for CVE-2023-52858",
"url": "https://bugzilla.suse.com/1225566"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52858"
},
{
"cve": "CVE-2023-52861",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52861"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm: bridge: it66121: Fix invalid connector dereference\n\nFix the NULL pointer dereference when no monitor is connected, and the\nsound card is opened from userspace.\n\nInstead return an empty buffer (of zeroes) as the EDID information to\nthe sound framework if there is no connector attached.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52861",
"url": "https://www.suse.com/security/cve/CVE-2023-52861"
},
{
"category": "external",
"summary": "SUSE Bug 1224941 for CVE-2023-52861",
"url": "https://bugzilla.suse.com/1224941"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52861"
},
{
"cve": "CVE-2023-52862",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52862"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix null pointer dereference in error message\n\nThis patch fixes a null pointer dereference in the error message that is\nprinted when the Display Core (DC) fails to initialize. The original\nmessage includes the DC version number, which is undefined if the DC is\nnot initialized.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52862",
"url": "https://www.suse.com/security/cve/CVE-2023-52862"
},
{
"category": "external",
"summary": "SUSE Bug 1225015 for CVE-2023-52862",
"url": "https://bugzilla.suse.com/1225015"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52862"
},
{
"cve": "CVE-2023-52863",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52863"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (axi-fan-control) Fix possible NULL pointer dereference\n\naxi_fan_control_irq_handler(), dependent on the private\naxi_fan_control_data structure, might be called before the hwmon\ndevice is registered. That will cause an \"Unable to handle kernel\nNULL pointer dereference\" error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52863",
"url": "https://www.suse.com/security/cve/CVE-2023-52863"
},
{
"category": "external",
"summary": "SUSE Bug 1225586 for CVE-2023-52863",
"url": "https://bugzilla.suse.com/1225586"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52863"
},
{
"cve": "CVE-2023-52864",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52864"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86: wmi: Fix opening of char device\n\nSince commit fa1f68db6ca7 (\"drivers: misc: pass miscdevice pointer via\nfile private data\"), the miscdevice stores a pointer to itself inside\nfilp-\u003eprivate_data, which means that private_data will not be NULL when\nwmi_char_open() is called. This might cause memory corruption should\nwmi_char_open() be unable to find its driver, something which can\nhappen when the associated WMI device is deleted in wmi_free_devices().\n\nFix the problem by using the miscdevice pointer to retrieve the WMI\ndevice data associated with a char device using container_of(). This\nalso avoids wmi_char_open() picking a wrong WMI device bound to a\ndriver with the same name as the original driver.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52864",
"url": "https://www.suse.com/security/cve/CVE-2023-52864"
},
{
"category": "external",
"summary": "SUSE Bug 1225132 for CVE-2023-52864",
"url": "https://bugzilla.suse.com/1225132"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52864"
},
{
"cve": "CVE-2023-52865",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52865"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: mediatek: clk-mt6797: Add check for mtk_alloc_clk_data\n\nAdd the check for the return value of mtk_alloc_clk_data() in order to\navoid NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52865",
"url": "https://www.suse.com/security/cve/CVE-2023-52865"
},
{
"category": "external",
"summary": "SUSE Bug 1225086 for CVE-2023-52865",
"url": "https://bugzilla.suse.com/1225086"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52865"
},
{
"cve": "CVE-2023-52866",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52866"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: uclogic: Fix user-memory-access bug in uclogic_params_ugee_v2_init_event_hooks()\n\nWhen CONFIG_HID_UCLOGIC=y and CONFIG_KUNIT_ALL_TESTS=y, launch kernel and\nthen the below user-memory-access bug occurs.\n\nIn hid_test_uclogic_params_cleanup_event_hooks(),it call\nuclogic_params_ugee_v2_init_event_hooks() with the first arg=NULL, so\nwhen it calls uclogic_params_ugee_v2_has_battery(), the hid_get_drvdata()\nwill access hdev-\u003edev with hdev=NULL, which will cause below\nuser-memory-access.\n\nSo add a fake_device with quirks member and call hid_set_drvdata()\nto assign hdev-\u003edev-\u003edriver_data which avoids the null-ptr-def bug\nfor drvdata-\u003equirks in uclogic_params_ugee_v2_has_battery(). After applying\nthis patch, the below user-memory-access bug never occurs.\n\n general protection fault, probably for non-canonical address 0xdffffc0000000329: 0000 [#1] PREEMPT SMP KASAN\n KASAN: probably user-memory-access in range [0x0000000000001948-0x000000000000194f]\n CPU: 5 PID: 2189 Comm: kunit_try_catch Tainted: G B W N 6.6.0-rc2+ #30\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\n RIP: 0010:uclogic_params_ugee_v2_init_event_hooks+0x87/0x600\n Code: f3 f3 65 48 8b 14 25 28 00 00 00 48 89 54 24 60 31 d2 48 89 fa c7 44 24 30 00 00 00 00 48 c7 44 24 28 02 f8 02 01 48 c1 ea 03 \u003c80\u003e 3c 02 00 0f 85 2c 04 00 00 48 8b 9d 48 19 00 00 48 b8 00 00 00\n RSP: 0000:ffff88810679fc88 EFLAGS: 00010202\n RAX: dffffc0000000000 RBX: 0000000000000004 RCX: 0000000000000000\n RDX: 0000000000000329 RSI: ffff88810679fd88 RDI: 0000000000001948\n RBP: 0000000000000000 R08: 0000000000000000 R09: ffffed1020f639f0\n R10: ffff888107b1cf87 R11: 0000000000000400 R12: 1ffff11020cf3f92\n R13: ffff88810679fd88 R14: ffff888100b97b08 R15: ffff8881030bb080\n FS: 0000000000000000(0000) GS:ffff888119e80000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000000 CR3: 0000000005286001 CR4: 0000000000770ee0\n DR0: ffffffff8fdd6cf4 DR1: ffffffff8fdd6cf5 DR2: ffffffff8fdd6cf6\n DR3: ffffffff8fdd6cf7 DR6: 00000000fffe0ff0 DR7: 0000000000000600\n PKRU: 55555554\n Call Trace:\n \u003cTASK\u003e\n ? die_addr+0x3d/0xa0\n ? exc_general_protection+0x144/0x220\n ? asm_exc_general_protection+0x22/0x30\n ? uclogic_params_ugee_v2_init_event_hooks+0x87/0x600\n ? sched_clock_cpu+0x69/0x550\n ? uclogic_parse_ugee_v2_desc_gen_params+0x70/0x70\n ? load_balance+0x2950/0x2950\n ? rcu_trc_cmpxchg_need_qs+0x67/0xa0\n hid_test_uclogic_params_cleanup_event_hooks+0x9e/0x1a0\n ? uclogic_params_ugee_v2_init_event_hooks+0x600/0x600\n ? __switch_to+0x5cf/0xe60\n ? migrate_enable+0x260/0x260\n ? __kthread_parkme+0x83/0x150\n ? kunit_try_run_case_cleanup+0xe0/0xe0\n kunit_generic_run_threadfn_adapter+0x4a/0x90\n ? kunit_try_catch_throw+0x80/0x80\n kthread+0x2b5/0x380\n ? kthread_complete_and_exit+0x20/0x20\n ret_from_fork+0x2d/0x70\n ? kthread_complete_and_exit+0x20/0x20\n ret_from_fork_asm+0x11/0x20\n \u003c/TASK\u003e\n Modules linked in:\n Dumping ftrace buffer:\n (ftrace buffer empty)\n ---[ end trace 0000000000000000 ]---\n RIP: 0010:uclogic_params_ugee_v2_init_event_hooks+0x87/0x600\n Code: f3 f3 65 48 8b 14 25 28 00 00 00 48 89 54 24 60 31 d2 48 89 fa c7 44 24 30 00 00 00 00 48 c7 44 24 28 02 f8 02 01 48 c1 ea 03 \u003c80\u003e 3c 02 00 0f 85 2c 04 00 00 48 8b 9d 48 19 00 00 48 b8 00 00 00\n RSP: 0000:ffff88810679fc88 EFLAGS: 00010202\n RAX: dffffc0000000000 RBX: 0000000000000004 RCX: 0000000000000000\n RDX: 0000000000000329 RSI: ffff88810679fd88 RDI: 0000000000001948\n RBP: 0000000000000000 R08: 0000000000000000 R09: ffffed1020f639f0\n R10: ffff888107b1cf87 R11: 0000000000000400 R12: 1ffff11020cf3f92\n R13: ffff88810679fd88 R14: ffff888100b97b08 R15: ffff8881030bb080\n FS: 0000000000000000(0000) GS:ffff888119e80000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000000 CR3: 0000000005286001 CR4: 0000000000770ee0\n DR0: ffffffff8fdd6cf4 DR1: \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52866",
"url": "https://www.suse.com/security/cve/CVE-2023-52866"
},
{
"category": "external",
"summary": "SUSE Bug 1225120 for CVE-2023-52866",
"url": "https://bugzilla.suse.com/1225120"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52866"
},
{
"cve": "CVE-2023-52867",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52867"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/radeon: possible buffer overflow\n\nBuffer \u0027afmt_status\u0027 of size 6 could overflow, since index \u0027afmt_idx\u0027 is\nchecked after access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52867",
"url": "https://www.suse.com/security/cve/CVE-2023-52867"
},
{
"category": "external",
"summary": "SUSE Bug 1225009 for CVE-2023-52867",
"url": "https://bugzilla.suse.com/1225009"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52867"
},
{
"cve": "CVE-2023-52868",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52868"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nthermal: core: prevent potential string overflow\n\nThe dev-\u003eid value comes from ida_alloc() so it\u0027s a number between zero\nand INT_MAX. If it\u0027s too high then these sprintf()s will overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52868",
"url": "https://www.suse.com/security/cve/CVE-2023-52868"
},
{
"category": "external",
"summary": "SUSE Bug 1225044 for CVE-2023-52868",
"url": "https://bugzilla.suse.com/1225044"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52868"
},
{
"cve": "CVE-2023-52869",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52869"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npstore/platform: Add check for kstrdup\n\nAdd check for the return value of kstrdup() and return the error\nif it fails in order to avoid NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52869",
"url": "https://www.suse.com/security/cve/CVE-2023-52869"
},
{
"category": "external",
"summary": "SUSE Bug 1225050 for CVE-2023-52869",
"url": "https://bugzilla.suse.com/1225050"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52869"
},
{
"cve": "CVE-2023-52870",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52870"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: mediatek: clk-mt6765: Add check for mtk_alloc_clk_data\n\nAdd the check for the return value of mtk_alloc_clk_data() in order to\navoid NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52870",
"url": "https://www.suse.com/security/cve/CVE-2023-52870"
},
{
"category": "external",
"summary": "SUSE Bug 1224937 for CVE-2023-52870",
"url": "https://bugzilla.suse.com/1224937"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52870"
},
{
"cve": "CVE-2023-52871",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52871"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: qcom: llcc: Handle a second device without data corruption\n\nUsually there is only one llcc device. But if there were a second, even\na failed probe call would modify the global drv_data pointer. So check\nif drv_data is valid before overwriting it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52871",
"url": "https://www.suse.com/security/cve/CVE-2023-52871"
},
{
"category": "external",
"summary": "SUSE Bug 1225534 for CVE-2023-52871",
"url": "https://bugzilla.suse.com/1225534"
},
{
"category": "external",
"summary": "SUSE Bug 1227475 for CVE-2023-52871",
"url": "https://bugzilla.suse.com/1227475"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "important"
}
],
"title": "CVE-2023-52871"
},
{
"cve": "CVE-2023-52872",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52872"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntty: n_gsm: fix race condition in status line change on dead connections\n\ngsm_cleanup_mux() cleans up the gsm by closing all DLCIs, stopping all\ntimers, removing the virtual tty devices and clearing the data queues.\nThis procedure, however, may cause subsequent changes of the virtual modem\nstatus lines of a DLCI. More data is being added the outgoing data queue\nand the deleted kick timer is restarted to handle this. At this point many\nresources have already been removed by the cleanup procedure. Thus, a\nkernel panic occurs.\n\nFix this by proving in gsm_modem_update() that the cleanup procedure has\nnot been started and the mux is still alive.\n\nNote that writing to a virtual tty is already protected by checks against\nthe DLCI specific connection state.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52872",
"url": "https://www.suse.com/security/cve/CVE-2023-52872"
},
{
"category": "external",
"summary": "SUSE Bug 1225591 for CVE-2023-52872",
"url": "https://bugzilla.suse.com/1225591"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52872"
},
{
"cve": "CVE-2023-52873",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52873"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: mediatek: clk-mt6779: Add check for mtk_alloc_clk_data\n\nAdd the check for the return value of mtk_alloc_clk_data() in order to\navoid NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52873",
"url": "https://www.suse.com/security/cve/CVE-2023-52873"
},
{
"category": "external",
"summary": "SUSE Bug 1225589 for CVE-2023-52873",
"url": "https://bugzilla.suse.com/1225589"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52873"
},
{
"cve": "CVE-2023-52874",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52874"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/tdx: Zero out the missing RSI in TDX_HYPERCALL macro\n\nIn the TDX_HYPERCALL asm, after the TDCALL instruction returns from the\nuntrusted VMM, the registers that the TDX guest shares to the VMM need\nto be cleared to avoid speculative execution of VMM-provided values.\n\nRSI is specified in the bitmap of those registers, but it is missing\nwhen zeroing out those registers in the current TDX_HYPERCALL.\n\nIt was there when it was originally added in commit 752d13305c78\n(\"x86/tdx: Expand __tdx_hypercall() to handle more arguments\"), but was\nlater removed in commit 1e70c680375a (\"x86/tdx: Do not corrupt\nframe-pointer in __tdx_hypercall()\"), which was correct because %rsi is\nlater restored in the \"pop %rsi\". However a later commit 7a3a401874be\n(\"x86/tdx: Drop flags from __tdx_hypercall()\") removed that \"pop %rsi\"\nbut forgot to add the \"xor %rsi, %rsi\" back.\n\nFix by adding it back.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52874",
"url": "https://www.suse.com/security/cve/CVE-2023-52874"
},
{
"category": "external",
"summary": "SUSE Bug 1225049 for CVE-2023-52874",
"url": "https://bugzilla.suse.com/1225049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.8,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "low"
}
],
"title": "CVE-2023-52874"
},
{
"cve": "CVE-2023-52875",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52875"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: mediatek: clk-mt2701: Add check for mtk_alloc_clk_data\n\nAdd the check for the return value of mtk_alloc_clk_data() in order to\navoid NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52875",
"url": "https://www.suse.com/security/cve/CVE-2023-52875"
},
{
"category": "external",
"summary": "SUSE Bug 1225096 for CVE-2023-52875",
"url": "https://bugzilla.suse.com/1225096"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52875"
},
{
"cve": "CVE-2023-52876",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52876"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: mediatek: clk-mt7629-eth: Add check for mtk_alloc_clk_data\n\nAdd the check for the return value of mtk_alloc_clk_data() in order to\navoid NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52876",
"url": "https://www.suse.com/security/cve/CVE-2023-52876"
},
{
"category": "external",
"summary": "SUSE Bug 1225036 for CVE-2023-52876",
"url": "https://bugzilla.suse.com/1225036"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52876"
},
{
"cve": "CVE-2023-52877",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52877"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: tcpm: Fix NULL pointer dereference in tcpm_pd_svdm()\n\nIt is possible that typec_register_partner() returns ERR_PTR on failure.\nWhen port-\u003epartner is an error, a NULL pointer dereference may occur as\nshown below.\n\n[91222.095236][ T319] typec port0: failed to register partner (-17)\n...\n[91225.061491][ T319] Unable to handle kernel NULL pointer dereference\nat virtual address 000000000000039f\n[91225.274642][ T319] pc : tcpm_pd_data_request+0x310/0x13fc\n[91225.274646][ T319] lr : tcpm_pd_data_request+0x298/0x13fc\n[91225.308067][ T319] Call trace:\n[91225.308070][ T319] tcpm_pd_data_request+0x310/0x13fc\n[91225.308073][ T319] tcpm_pd_rx_handler+0x100/0x9e8\n[91225.355900][ T319] kthread_worker_fn+0x178/0x58c\n[91225.355902][ T319] kthread+0x150/0x200\n[91225.355905][ T319] ret_from_fork+0x10/0x30\n\nAdd a check for port-\u003epartner to avoid dereferencing a NULL pointer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52877",
"url": "https://www.suse.com/security/cve/CVE-2023-52877"
},
{
"category": "external",
"summary": "SUSE Bug 1224944 for CVE-2023-52877",
"url": "https://bugzilla.suse.com/1224944"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52877"
},
{
"cve": "CVE-2023-52878",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52878"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: dev: can_put_echo_skb(): don\u0027t crash kernel if can_priv::echo_skb is accessed out of bounds\n\nIf the \"struct can_priv::echoo_skb\" is accessed out of bounds, this\nwould cause a kernel crash. Instead, issue a meaningful warning\nmessage and return with an error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52878",
"url": "https://www.suse.com/security/cve/CVE-2023-52878"
},
{
"category": "external",
"summary": "SUSE Bug 1225000 for CVE-2023-52878",
"url": "https://bugzilla.suse.com/1225000"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52878"
},
{
"cve": "CVE-2023-52879",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52879"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Have trace_event_file have ref counters\n\nThe following can crash the kernel:\n\n # cd /sys/kernel/tracing\n # echo \u0027p:sched schedule\u0027 \u003e kprobe_events\n # exec 5\u003e\u003eevents/kprobes/sched/enable\n # \u003e kprobe_events\n # exec 5\u003e\u0026-\n\nThe above commands:\n\n 1. Change directory to the tracefs directory\n 2. Create a kprobe event (doesn\u0027t matter what one)\n 3. Open bash file descriptor 5 on the enable file of the kprobe event\n 4. Delete the kprobe event (removes the files too)\n 5. Close the bash file descriptor 5\n\nThe above causes a crash!\n\n BUG: kernel NULL pointer dereference, address: 0000000000000028\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 0 P4D 0\n Oops: 0000 [#1] PREEMPT SMP PTI\n CPU: 6 PID: 877 Comm: bash Not tainted 6.5.0-rc4-test-00008-g2c6b6b1029d4-dirty #186\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014\n RIP: 0010:tracing_release_file_tr+0xc/0x50\n\nWhat happens here is that the kprobe event creates a trace_event_file\n\"file\" descriptor that represents the file in tracefs to the event. It\nmaintains state of the event (is it enabled for the given instance?).\nOpening the \"enable\" file gets a reference to the event \"file\" descriptor\nvia the open file descriptor. When the kprobe event is deleted, the file is\nalso deleted from the tracefs system which also frees the event \"file\"\ndescriptor.\n\nBut as the tracefs file is still opened by user space, it will not be\ntotally removed until the final dput() is called on it. But this is not\ntrue with the event \"file\" descriptor that is already freed. If the user\ndoes a write to or simply closes the file descriptor it will reference the\nevent \"file\" descriptor that was just freed, causing a use-after-free bug.\n\nTo solve this, add a ref count to the event \"file\" descriptor as well as a\nnew flag called \"FREED\". The \"file\" will not be freed until the last\nreference is released. But the FREE flag will be set when the event is\nremoved to prevent any more modifications to that event from happening,\neven if there\u0027s still a reference to the event \"file\" descriptor.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52879",
"url": "https://www.suse.com/security/cve/CVE-2023-52879"
},
{
"category": "external",
"summary": "SUSE Bug 1225101 for CVE-2023-52879",
"url": "https://bugzilla.suse.com/1225101"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52879"
},
{
"cve": "CVE-2023-52880",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52880"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntty: n_gsm: require CAP_NET_ADMIN to attach N_GSM0710 ldisc\n\nAny unprivileged user can attach N_GSM0710 ldisc, but it requires\nCAP_NET_ADMIN to create a GSM network anyway.\n\nRequire initial namespace CAP_NET_ADMIN to do that.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52880",
"url": "https://www.suse.com/security/cve/CVE-2023-52880"
},
{
"category": "external",
"summary": "SUSE Bug 1222619 for CVE-2023-52880",
"url": "https://bugzilla.suse.com/1222619"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "important"
}
],
"title": "CVE-2023-52880"
},
{
"cve": "CVE-2023-52881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52881"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: do not accept ACK of bytes we never sent\n\nThis patch is based on a detailed report and ideas from Yepeng Pan\nand Christian Rossow.\n\nACK seq validation is currently following RFC 5961 5.2 guidelines:\n\n The ACK value is considered acceptable only if\n it is in the range of ((SND.UNA - MAX.SND.WND) \u003c= SEG.ACK \u003c=\n SND.NXT). All incoming segments whose ACK value doesn\u0027t satisfy the\n above condition MUST be discarded and an ACK sent back. It needs to\n be noted that RFC 793 on page 72 (fifth check) says: \"If the ACK is a\n duplicate (SEG.ACK \u003c SND.UNA), it can be ignored. If the ACK\n acknowledges something not yet sent (SEG.ACK \u003e SND.NXT) then send an\n ACK, drop the segment, and return\". The \"ignored\" above implies that\n the processing of the incoming data segment continues, which means\n the ACK value is treated as acceptable. This mitigation makes the\n ACK check more stringent since any ACK \u003c SND.UNA wouldn\u0027t be\n accepted, instead only ACKs that are in the range ((SND.UNA -\n MAX.SND.WND) \u003c= SEG.ACK \u003c= SND.NXT) get through.\n\nThis can be refined for new (and possibly spoofed) flows,\nby not accepting ACK for bytes that were never sent.\n\nThis greatly improves TCP security at a little cost.\n\nI added a Fixes: tag to make sure this patch will reach stable trees,\neven if the \u0027blamed\u0027 patch was adhering to the RFC.\n\ntp-\u003ebytes_acked was added in linux-4.2\n\nFollowing packetdrill test (courtesy of Yepeng Pan) shows\nthe issue at hand:\n\n0 socket(..., SOCK_STREAM, IPPROTO_TCP) = 3\n+0 setsockopt(3, SOL_SOCKET, SO_REUSEADDR, [1], 4) = 0\n+0 bind(3, ..., ...) = 0\n+0 listen(3, 1024) = 0\n\n// ---------------- Handshake ------------------- //\n\n// when window scale is set to 14 the window size can be extended to\n// 65535 * (2^14) = 1073725440. Linux would accept an ACK packet\n// with ack number in (Server_ISN+1-1073725440. Server_ISN+1)\n// ,though this ack number acknowledges some data never\n// sent by the server.\n\n+0 \u003c S 0:0(0) win 65535 \u003cmss 1400,nop,wscale 14\u003e\n+0 \u003e S. 0:0(0) ack 1 \u003c...\u003e\n+0 \u003c . 1:1(0) ack 1 win 65535\n+0 accept(3, ..., ...) = 4\n\n// For the established connection, we send an ACK packet,\n// the ack packet uses ack number 1 - 1073725300 + 2^32,\n// where 2^32 is used to wrap around.\n// Note: we used 1073725300 instead of 1073725440 to avoid possible\n// edge cases.\n// 1 - 1073725300 + 2^32 = 3221241997\n\n// Oops, old kernels happily accept this packet.\n+0 \u003c . 1:1001(1000) ack 3221241997 win 65535\n\n// After the kernel fix the following will be replaced by a challenge ACK,\n// and prior malicious frame would be dropped.\n+0 \u003e . 1:1(0) ack 1001",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52881",
"url": "https://www.suse.com/security/cve/CVE-2023-52881"
},
{
"category": "external",
"summary": "SUSE Bug 1223384 for CVE-2023-52881",
"url": "https://bugzilla.suse.com/1223384"
},
{
"category": "external",
"summary": "SUSE Bug 1225611 for CVE-2023-52881",
"url": "https://bugzilla.suse.com/1225611"
},
{
"category": "external",
"summary": "SUSE Bug 1226152 for CVE-2023-52881",
"url": "https://bugzilla.suse.com/1226152"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52881"
},
{
"cve": "CVE-2023-52883",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52883"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Fix possible null pointer dereference\n\nabo-\u003etbo.resource may be NULL in amdgpu_vm_bo_update.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52883",
"url": "https://www.suse.com/security/cve/CVE-2023-52883"
},
{
"category": "external",
"summary": "SUSE Bug 1226630 for CVE-2023-52883",
"url": "https://bugzilla.suse.com/1226630"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52883"
},
{
"cve": "CVE-2023-52884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52884"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: cyapa - add missing input core locking to suspend/resume functions\n\nGrab input-\u003emutex during suspend/resume functions like it is done in\nother input drivers. This fixes the following warning during system\nsuspend/resume cycle on Samsung Exynos5250-based Snow Chromebook:\n\n------------[ cut here ]------------\nWARNING: CPU: 1 PID: 1680 at drivers/input/input.c:2291 input_device_enabled+0x68/0x6c\nModules linked in: ...\nCPU: 1 PID: 1680 Comm: kworker/u4:12 Tainted: G W 6.6.0-rc5-next-20231009 #14109\nHardware name: Samsung Exynos (Flattened Device Tree)\nWorkqueue: events_unbound async_run_entry_fn\n unwind_backtrace from show_stack+0x10/0x14\n show_stack from dump_stack_lvl+0x58/0x70\n dump_stack_lvl from __warn+0x1a8/0x1cc\n __warn from warn_slowpath_fmt+0x18c/0x1b4\n warn_slowpath_fmt from input_device_enabled+0x68/0x6c\n input_device_enabled from cyapa_gen3_set_power_mode+0x13c/0x1dc\n cyapa_gen3_set_power_mode from cyapa_reinitialize+0x10c/0x15c\n cyapa_reinitialize from cyapa_resume+0x48/0x98\n cyapa_resume from dpm_run_callback+0x90/0x298\n dpm_run_callback from device_resume+0xb4/0x258\n device_resume from async_resume+0x20/0x64\n async_resume from async_run_entry_fn+0x40/0x15c\n async_run_entry_fn from process_scheduled_works+0xbc/0x6a8\n process_scheduled_works from worker_thread+0x188/0x454\n worker_thread from kthread+0x108/0x140\n kthread from ret_from_fork+0x14/0x28\nException stack(0xf1625fb0 to 0xf1625ff8)\n...\n---[ end trace 0000000000000000 ]---\n...\n------------[ cut here ]------------\nWARNING: CPU: 1 PID: 1680 at drivers/input/input.c:2291 input_device_enabled+0x68/0x6c\nModules linked in: ...\nCPU: 1 PID: 1680 Comm: kworker/u4:12 Tainted: G W 6.6.0-rc5-next-20231009 #14109\nHardware name: Samsung Exynos (Flattened Device Tree)\nWorkqueue: events_unbound async_run_entry_fn\n unwind_backtrace from show_stack+0x10/0x14\n show_stack from dump_stack_lvl+0x58/0x70\n dump_stack_lvl from __warn+0x1a8/0x1cc\n __warn from warn_slowpath_fmt+0x18c/0x1b4\n warn_slowpath_fmt from input_device_enabled+0x68/0x6c\n input_device_enabled from cyapa_gen3_set_power_mode+0x13c/0x1dc\n cyapa_gen3_set_power_mode from cyapa_reinitialize+0x10c/0x15c\n cyapa_reinitialize from cyapa_resume+0x48/0x98\n cyapa_resume from dpm_run_callback+0x90/0x298\n dpm_run_callback from device_resume+0xb4/0x258\n device_resume from async_resume+0x20/0x64\n async_resume from async_run_entry_fn+0x40/0x15c\n async_run_entry_fn from process_scheduled_works+0xbc/0x6a8\n process_scheduled_works from worker_thread+0x188/0x454\n worker_thread from kthread+0x108/0x140\n kthread from ret_from_fork+0x14/0x28\nException stack(0xf1625fb0 to 0xf1625ff8)\n...\n---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52884",
"url": "https://www.suse.com/security/cve/CVE-2023-52884"
},
{
"category": "external",
"summary": "SUSE Bug 1226764 for CVE-2023-52884",
"url": "https://bugzilla.suse.com/1226764"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2023-52884"
},
{
"cve": "CVE-2024-25741",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-25741"
}
],
"notes": [
{
"category": "general",
"text": "printer_write in drivers/usb/gadget/function/f_printer.c in the Linux kernel through 6.7.4 does not properly call usb_ep_queue, which might allow attackers to cause a denial of service or have unspecified other impact.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-25741",
"url": "https://www.suse.com/security/cve/CVE-2024-25741"
},
{
"category": "external",
"summary": "SUSE Bug 1219832 for CVE-2024-25741",
"url": "https://bugzilla.suse.com/1219832"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-25741"
},
{
"cve": "CVE-2024-26615",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26615"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/smc: fix illegal rmb_desc access in SMC-D connection dump\n\nA crash was found when dumping SMC-D connections. It can be reproduced\nby following steps:\n\n- run nginx/wrk test:\n smc_run nginx\n smc_run wrk -t 16 -c 1000 -d \u003cduration\u003e -H \u0027Connection: Close\u0027 \u003cURL\u003e\n\n- continuously dump SMC-D connections in parallel:\n watch -n 1 \u0027smcss -D\u0027\n\n BUG: kernel NULL pointer dereference, address: 0000000000000030\n CPU: 2 PID: 7204 Comm: smcss Kdump: loaded Tainted: G\tE 6.7.0+ #55\n RIP: 0010:__smc_diag_dump.constprop.0+0x5e5/0x620 [smc_diag]\n Call Trace:\n \u003cTASK\u003e\n ? __die+0x24/0x70\n ? page_fault_oops+0x66/0x150\n ? exc_page_fault+0x69/0x140\n ? asm_exc_page_fault+0x26/0x30\n ? __smc_diag_dump.constprop.0+0x5e5/0x620 [smc_diag]\n ? __kmalloc_node_track_caller+0x35d/0x430\n ? __alloc_skb+0x77/0x170\n smc_diag_dump_proto+0xd0/0xf0 [smc_diag]\n smc_diag_dump+0x26/0x60 [smc_diag]\n netlink_dump+0x19f/0x320\n __netlink_dump_start+0x1dc/0x300\n smc_diag_handler_dump+0x6a/0x80 [smc_diag]\n ? __pfx_smc_diag_dump+0x10/0x10 [smc_diag]\n sock_diag_rcv_msg+0x121/0x140\n ? __pfx_sock_diag_rcv_msg+0x10/0x10\n netlink_rcv_skb+0x5a/0x110\n sock_diag_rcv+0x28/0x40\n netlink_unicast+0x22a/0x330\n netlink_sendmsg+0x1f8/0x420\n __sock_sendmsg+0xb0/0xc0\n ____sys_sendmsg+0x24e/0x300\n ? copy_msghdr_from_user+0x62/0x80\n ___sys_sendmsg+0x7c/0xd0\n ? __do_fault+0x34/0x160\n ? do_read_fault+0x5f/0x100\n ? do_fault+0xb0/0x110\n ? __handle_mm_fault+0x2b0/0x6c0\n __sys_sendmsg+0x4d/0x80\n do_syscall_64+0x69/0x180\n entry_SYSCALL_64_after_hwframe+0x6e/0x76\n\nIt is possible that the connection is in process of being established\nwhen we dump it. Assumed that the connection has been registered in a\nlink group by smc_conn_create() but the rmb_desc has not yet been\ninitialized by smc_buf_create(), thus causing the illegal access to\nconn-\u003ermb_desc. So fix it by checking before dump.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26615",
"url": "https://www.suse.com/security/cve/CVE-2024-26615"
},
{
"category": "external",
"summary": "SUSE Bug 1220942 for CVE-2024-26615",
"url": "https://bugzilla.suse.com/1220942"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-26615"
},
{
"cve": "CVE-2024-26623",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26623"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npds_core: Prevent race issues involving the adminq\n\nThere are multiple paths that can result in using the pdsc\u0027s\nadminq.\n\n[1] pdsc_adminq_isr and the resulting work from queue_work(),\n i.e. pdsc_work_thread()-\u003epdsc_process_adminq()\n\n[2] pdsc_adminq_post()\n\nWhen the device goes through reset via PCIe reset and/or\na fw_down/fw_up cycle due to bad PCIe state or bad device\nstate the adminq is destroyed and recreated.\n\nA NULL pointer dereference can happen if [1] or [2] happens\nafter the adminq is already destroyed.\n\nIn order to fix this, add some further state checks and\nimplement reference counting for adminq uses. Reference\ncounting was used because multiple threads can attempt to\naccess the adminq at the same time via [1] or [2]. Additionally,\nmultiple clients (i.e. pds-vfio-pci) can be using [2]\nat the same time.\n\nThe adminq_refcnt is initialized to 1 when the adminq has been\nallocated and is ready to use. Users/clients of the adminq\n(i.e. [1] and [2]) will increment the refcnt when they are using\nthe adminq. When the driver goes into a fw_down cycle it will\nset the PDSC_S_FW_DEAD bit and then wait for the adminq_refcnt\nto hit 1. Setting the PDSC_S_FW_DEAD before waiting will prevent\nany further adminq_refcnt increments. Waiting for the\nadminq_refcnt to hit 1 allows for any current users of the adminq\nto finish before the driver frees the adminq. Once the\nadminq_refcnt hits 1 the driver clears the refcnt to signify that\nthe adminq is deleted and cannot be used. On the fw_up cycle the\ndriver will once again initialize the adminq_refcnt to 1 allowing\nthe adminq to be used again.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26623",
"url": "https://www.suse.com/security/cve/CVE-2024-26623"
},
{
"category": "external",
"summary": "SUSE Bug 1221057 for CVE-2024-26623",
"url": "https://bugzilla.suse.com/1221057"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-26623"
},
{
"cve": "CVE-2024-26625",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26625"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nllc: call sock_orphan() at release time\n\nsyzbot reported an interesting trace [1] caused by a stale sk-\u003esk_wq\npointer in a closed llc socket.\n\nIn commit ff7b11aa481f (\"net: socket: set sock-\u003esk to NULL after\ncalling proto_ops::release()\") Eric Biggers hinted that some protocols\nare missing a sock_orphan(), we need to perform a full audit.\n\nIn net-next, I plan to clear sock-\u003esk from sock_orphan() and\namend Eric patch to add a warning.\n\n[1]\n BUG: KASAN: slab-use-after-free in list_empty include/linux/list.h:373 [inline]\n BUG: KASAN: slab-use-after-free in waitqueue_active include/linux/wait.h:127 [inline]\n BUG: KASAN: slab-use-after-free in sock_def_write_space_wfree net/core/sock.c:3384 [inline]\n BUG: KASAN: slab-use-after-free in sock_wfree+0x9a8/0x9d0 net/core/sock.c:2468\nRead of size 8 at addr ffff88802f4fc880 by task ksoftirqd/1/27\n\nCPU: 1 PID: 27 Comm: ksoftirqd/1 Not tainted 6.8.0-rc1-syzkaller-00049-g6098d87eaf31 #0\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0xd9/0x1b0 lib/dump_stack.c:106\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0xc4/0x620 mm/kasan/report.c:488\n kasan_report+0xda/0x110 mm/kasan/report.c:601\n list_empty include/linux/list.h:373 [inline]\n waitqueue_active include/linux/wait.h:127 [inline]\n sock_def_write_space_wfree net/core/sock.c:3384 [inline]\n sock_wfree+0x9a8/0x9d0 net/core/sock.c:2468\n skb_release_head_state+0xa3/0x2b0 net/core/skbuff.c:1080\n skb_release_all net/core/skbuff.c:1092 [inline]\n napi_consume_skb+0x119/0x2b0 net/core/skbuff.c:1404\n e1000_unmap_and_free_tx_resource+0x144/0x200 drivers/net/ethernet/intel/e1000/e1000_main.c:1970\n e1000_clean_tx_irq drivers/net/ethernet/intel/e1000/e1000_main.c:3860 [inline]\n e1000_clean+0x4a1/0x26e0 drivers/net/ethernet/intel/e1000/e1000_main.c:3801\n __napi_poll.constprop.0+0xb4/0x540 net/core/dev.c:6576\n napi_poll net/core/dev.c:6645 [inline]\n net_rx_action+0x956/0xe90 net/core/dev.c:6778\n __do_softirq+0x21a/0x8de kernel/softirq.c:553\n run_ksoftirqd kernel/softirq.c:921 [inline]\n run_ksoftirqd+0x31/0x60 kernel/softirq.c:913\n smpboot_thread_fn+0x660/0xa10 kernel/smpboot.c:164\n kthread+0x2c6/0x3a0 kernel/kthread.c:388\n ret_from_fork+0x45/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x11/0x20 arch/x86/entry/entry_64.S:242\n \u003c/TASK\u003e\n\nAllocated by task 5167:\n kasan_save_stack+0x33/0x50 mm/kasan/common.c:47\n kasan_save_track+0x14/0x30 mm/kasan/common.c:68\n unpoison_slab_object mm/kasan/common.c:314 [inline]\n __kasan_slab_alloc+0x81/0x90 mm/kasan/common.c:340\n kasan_slab_alloc include/linux/kasan.h:201 [inline]\n slab_post_alloc_hook mm/slub.c:3813 [inline]\n slab_alloc_node mm/slub.c:3860 [inline]\n kmem_cache_alloc_lru+0x142/0x6f0 mm/slub.c:3879\n alloc_inode_sb include/linux/fs.h:3019 [inline]\n sock_alloc_inode+0x25/0x1c0 net/socket.c:308\n alloc_inode+0x5d/0x220 fs/inode.c:260\n new_inode_pseudo+0x16/0x80 fs/inode.c:1005\n sock_alloc+0x40/0x270 net/socket.c:634\n __sock_create+0xbc/0x800 net/socket.c:1535\n sock_create net/socket.c:1622 [inline]\n __sys_socket_create net/socket.c:1659 [inline]\n __sys_socket+0x14c/0x260 net/socket.c:1706\n __do_sys_socket net/socket.c:1720 [inline]\n __se_sys_socket net/socket.c:1718 [inline]\n __x64_sys_socket+0x72/0xb0 net/socket.c:1718\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xd3/0x250 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x63/0x6b\n\nFreed by task 0:\n kasan_save_stack+0x33/0x50 mm/kasan/common.c:47\n kasan_save_track+0x14/0x30 mm/kasan/common.c:68\n kasan_save_free_info+0x3f/0x60 mm/kasan/generic.c:640\n poison_slab_object mm/kasan/common.c:241 [inline]\n __kasan_slab_free+0x121/0x1b0 mm/kasan/common.c:257\n kasan_slab_free include/linux/kasan.h:184 [inline]\n slab_free_hook mm/slub.c:2121 [inlin\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26625",
"url": "https://www.suse.com/security/cve/CVE-2024-26625"
},
{
"category": "external",
"summary": "SUSE Bug 1221086 for CVE-2024-26625",
"url": "https://bugzilla.suse.com/1221086"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-26625"
},
{
"cve": "CVE-2024-26633",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26633"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nip6_tunnel: fix NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tlv_enc_lim()\n\nsyzbot pointed out [1] that NEXTHDR_FRAGMENT handling is broken.\n\nReading frag_off can only be done if we pulled enough bytes\nto skb-\u003ehead. Currently we might access garbage.\n\n[1]\nBUG: KMSAN: uninit-value in ip6_tnl_parse_tlv_enc_lim+0x94f/0xbb0\nip6_tnl_parse_tlv_enc_lim+0x94f/0xbb0\nipxip6_tnl_xmit net/ipv6/ip6_tunnel.c:1326 [inline]\nip6_tnl_start_xmit+0xab2/0x1a70 net/ipv6/ip6_tunnel.c:1432\n__netdev_start_xmit include/linux/netdevice.h:4940 [inline]\nnetdev_start_xmit include/linux/netdevice.h:4954 [inline]\nxmit_one net/core/dev.c:3548 [inline]\ndev_hard_start_xmit+0x247/0xa10 net/core/dev.c:3564\n__dev_queue_xmit+0x33b8/0x5130 net/core/dev.c:4349\ndev_queue_xmit include/linux/netdevice.h:3134 [inline]\nneigh_connected_output+0x569/0x660 net/core/neighbour.c:1592\nneigh_output include/net/neighbour.h:542 [inline]\nip6_finish_output2+0x23a9/0x2b30 net/ipv6/ip6_output.c:137\nip6_finish_output+0x855/0x12b0 net/ipv6/ip6_output.c:222\nNF_HOOK_COND include/linux/netfilter.h:303 [inline]\nip6_output+0x323/0x610 net/ipv6/ip6_output.c:243\ndst_output include/net/dst.h:451 [inline]\nip6_local_out+0xe9/0x140 net/ipv6/output_core.c:155\nip6_send_skb net/ipv6/ip6_output.c:1952 [inline]\nip6_push_pending_frames+0x1f9/0x560 net/ipv6/ip6_output.c:1972\nrawv6_push_pending_frames+0xbe8/0xdf0 net/ipv6/raw.c:582\nrawv6_sendmsg+0x2b66/0x2e70 net/ipv6/raw.c:920\ninet_sendmsg+0x105/0x190 net/ipv4/af_inet.c:847\nsock_sendmsg_nosec net/socket.c:730 [inline]\n__sock_sendmsg net/socket.c:745 [inline]\n____sys_sendmsg+0x9c2/0xd60 net/socket.c:2584\n___sys_sendmsg+0x28d/0x3c0 net/socket.c:2638\n__sys_sendmsg net/socket.c:2667 [inline]\n__do_sys_sendmsg net/socket.c:2676 [inline]\n__se_sys_sendmsg net/socket.c:2674 [inline]\n__x64_sys_sendmsg+0x307/0x490 net/socket.c:2674\ndo_syscall_x64 arch/x86/entry/common.c:52 [inline]\ndo_syscall_64+0x44/0x110 arch/x86/entry/common.c:83\nentry_SYSCALL_64_after_hwframe+0x63/0x6b\n\nUninit was created at:\nslab_post_alloc_hook+0x129/0xa70 mm/slab.h:768\nslab_alloc_node mm/slub.c:3478 [inline]\n__kmem_cache_alloc_node+0x5c9/0x970 mm/slub.c:3517\n__do_kmalloc_node mm/slab_common.c:1006 [inline]\n__kmalloc_node_track_caller+0x118/0x3c0 mm/slab_common.c:1027\nkmalloc_reserve+0x249/0x4a0 net/core/skbuff.c:582\npskb_expand_head+0x226/0x1a00 net/core/skbuff.c:2098\n__pskb_pull_tail+0x13b/0x2310 net/core/skbuff.c:2655\npskb_may_pull_reason include/linux/skbuff.h:2673 [inline]\npskb_may_pull include/linux/skbuff.h:2681 [inline]\nip6_tnl_parse_tlv_enc_lim+0x901/0xbb0 net/ipv6/ip6_tunnel.c:408\nipxip6_tnl_xmit net/ipv6/ip6_tunnel.c:1326 [inline]\nip6_tnl_start_xmit+0xab2/0x1a70 net/ipv6/ip6_tunnel.c:1432\n__netdev_start_xmit include/linux/netdevice.h:4940 [inline]\nnetdev_start_xmit include/linux/netdevice.h:4954 [inline]\nxmit_one net/core/dev.c:3548 [inline]\ndev_hard_start_xmit+0x247/0xa10 net/core/dev.c:3564\n__dev_queue_xmit+0x33b8/0x5130 net/core/dev.c:4349\ndev_queue_xmit include/linux/netdevice.h:3134 [inline]\nneigh_connected_output+0x569/0x660 net/core/neighbour.c:1592\nneigh_output include/net/neighbour.h:542 [inline]\nip6_finish_output2+0x23a9/0x2b30 net/ipv6/ip6_output.c:137\nip6_finish_output+0x855/0x12b0 net/ipv6/ip6_output.c:222\nNF_HOOK_COND include/linux/netfilter.h:303 [inline]\nip6_output+0x323/0x610 net/ipv6/ip6_output.c:243\ndst_output include/net/dst.h:451 [inline]\nip6_local_out+0xe9/0x140 net/ipv6/output_core.c:155\nip6_send_skb net/ipv6/ip6_output.c:1952 [inline]\nip6_push_pending_frames+0x1f9/0x560 net/ipv6/ip6_output.c:1972\nrawv6_push_pending_frames+0xbe8/0xdf0 net/ipv6/raw.c:582\nrawv6_sendmsg+0x2b66/0x2e70 net/ipv6/raw.c:920\ninet_sendmsg+0x105/0x190 net/ipv4/af_inet.c:847\nsock_sendmsg_nosec net/socket.c:730 [inline]\n__sock_sendmsg net/socket.c:745 [inline]\n____sys_sendmsg+0x9c2/0xd60 net/socket.c:2584\n___sys_sendmsg+0x28d/0x3c0 net/socket.c:2638\n__sys_sendmsg net/socket.c:2667 [inline]\n__do_sys_sendms\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26633",
"url": "https://www.suse.com/security/cve/CVE-2024-26633"
},
{
"category": "external",
"summary": "SUSE Bug 1221647 for CVE-2024-26633",
"url": "https://bugzilla.suse.com/1221647"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-26633"
},
{
"cve": "CVE-2024-26635",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26635"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nllc: Drop support for ETH_P_TR_802_2.\n\nsyzbot reported an uninit-value bug below. [0]\n\nllc supports ETH_P_802_2 (0x0004) and used to support ETH_P_TR_802_2\n(0x0011), and syzbot abused the latter to trigger the bug.\n\n write$tun(r0, \u0026(0x7f0000000040)={@val={0x0, 0x11}, @val, @mpls={[], @llc={@snap={0xaa, 0x1, \u0027)\u0027, \"90e5dd\"}}}}, 0x16)\n\nllc_conn_handler() initialises local variables {saddr,daddr}.mac\nbased on skb in llc_pdu_decode_sa()/llc_pdu_decode_da() and passes\nthem to __llc_lookup().\n\nHowever, the initialisation is done only when skb-\u003eprotocol is\nhtons(ETH_P_802_2), otherwise, __llc_lookup_established() and\n__llc_lookup_listener() will read garbage.\n\nThe missing initialisation existed prior to commit 211ed865108e\n(\"net: delete all instances of special processing for token ring\").\n\nIt removed the part to kick out the token ring stuff but forgot to\nclose the door allowing ETH_P_TR_802_2 packets to sneak into llc_rcv().\n\nLet\u0027s remove llc_tr_packet_type and complete the deprecation.\n\n[0]:\nBUG: KMSAN: uninit-value in __llc_lookup_established+0xe9d/0xf90\n __llc_lookup_established+0xe9d/0xf90\n __llc_lookup net/llc/llc_conn.c:611 [inline]\n llc_conn_handler+0x4bd/0x1360 net/llc/llc_conn.c:791\n llc_rcv+0xfbb/0x14a0 net/llc/llc_input.c:206\n __netif_receive_skb_one_core net/core/dev.c:5527 [inline]\n __netif_receive_skb+0x1a6/0x5a0 net/core/dev.c:5641\n netif_receive_skb_internal net/core/dev.c:5727 [inline]\n netif_receive_skb+0x58/0x660 net/core/dev.c:5786\n tun_rx_batched+0x3ee/0x980 drivers/net/tun.c:1555\n tun_get_user+0x53af/0x66d0 drivers/net/tun.c:2002\n tun_chr_write_iter+0x3af/0x5d0 drivers/net/tun.c:2048\n call_write_iter include/linux/fs.h:2020 [inline]\n new_sync_write fs/read_write.c:491 [inline]\n vfs_write+0x8ef/0x1490 fs/read_write.c:584\n ksys_write+0x20f/0x4c0 fs/read_write.c:637\n __do_sys_write fs/read_write.c:649 [inline]\n __se_sys_write fs/read_write.c:646 [inline]\n __x64_sys_write+0x93/0xd0 fs/read_write.c:646\n do_syscall_x64 arch/x86/entry/common.c:51 [inline]\n do_syscall_64+0x44/0x110 arch/x86/entry/common.c:82\n entry_SYSCALL_64_after_hwframe+0x63/0x6b\n\nLocal variable daddr created at:\n llc_conn_handler+0x53/0x1360 net/llc/llc_conn.c:783\n llc_rcv+0xfbb/0x14a0 net/llc/llc_input.c:206\n\nCPU: 1 PID: 5004 Comm: syz-executor994 Not tainted 6.6.0-syzkaller-14500-g1c41041124bd #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26635",
"url": "https://www.suse.com/security/cve/CVE-2024-26635"
},
{
"category": "external",
"summary": "SUSE Bug 1221656 for CVE-2024-26635",
"url": "https://bugzilla.suse.com/1221656"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-26635"
},
{
"cve": "CVE-2024-26636",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26636"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nllc: make llc_ui_sendmsg() more robust against bonding changes\n\nsyzbot was able to trick llc_ui_sendmsg(), allocating an skb with no\nheadroom, but subsequently trying to push 14 bytes of Ethernet header [1]\n\nLike some others, llc_ui_sendmsg() releases the socket lock before\ncalling sock_alloc_send_skb().\nThen it acquires it again, but does not redo all the sanity checks\nthat were performed.\n\nThis fix:\n\n- Uses LL_RESERVED_SPACE() to reserve space.\n- Check all conditions again after socket lock is held again.\n- Do not account Ethernet header for mtu limitation.\n\n[1]\n\nskbuff: skb_under_panic: text:ffff800088baa334 len:1514 put:14 head:ffff0000c9c37000 data:ffff0000c9c36ff2 tail:0x5dc end:0x6c0 dev:bond0\n\n kernel BUG at net/core/skbuff.c:193 !\nInternal error: Oops - BUG: 00000000f2000800 [#1] PREEMPT SMP\nModules linked in:\nCPU: 0 PID: 6875 Comm: syz-executor.0 Not tainted 6.7.0-rc8-syzkaller-00101-g0802e17d9aca-dirty #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023\npstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : skb_panic net/core/skbuff.c:189 [inline]\n pc : skb_under_panic+0x13c/0x140 net/core/skbuff.c:203\n lr : skb_panic net/core/skbuff.c:189 [inline]\n lr : skb_under_panic+0x13c/0x140 net/core/skbuff.c:203\nsp : ffff800096f97000\nx29: ffff800096f97010 x28: ffff80008cc8d668 x27: dfff800000000000\nx26: ffff0000cb970c90 x25: 00000000000005dc x24: ffff0000c9c36ff2\nx23: ffff0000c9c37000 x22: 00000000000005ea x21: 00000000000006c0\nx20: 000000000000000e x19: ffff800088baa334 x18: 1fffe000368261ce\nx17: ffff80008e4ed000 x16: ffff80008a8310f8 x15: 0000000000000001\nx14: 1ffff00012df2d58 x13: 0000000000000000 x12: 0000000000000000\nx11: 0000000000000001 x10: 0000000000ff0100 x9 : e28a51f1087e8400\nx8 : e28a51f1087e8400 x7 : ffff80008028f8d0 x6 : 0000000000000000\nx5 : 0000000000000001 x4 : 0000000000000001 x3 : ffff800082b78714\nx2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000089\nCall trace:\n skb_panic net/core/skbuff.c:189 [inline]\n skb_under_panic+0x13c/0x140 net/core/skbuff.c:203\n skb_push+0xf0/0x108 net/core/skbuff.c:2451\n eth_header+0x44/0x1f8 net/ethernet/eth.c:83\n dev_hard_header include/linux/netdevice.h:3188 [inline]\n llc_mac_hdr_init+0x110/0x17c net/llc/llc_output.c:33\n llc_sap_action_send_xid_c+0x170/0x344 net/llc/llc_s_ac.c:85\n llc_exec_sap_trans_actions net/llc/llc_sap.c:153 [inline]\n llc_sap_next_state net/llc/llc_sap.c:182 [inline]\n llc_sap_state_process+0x1ec/0x774 net/llc/llc_sap.c:209\n llc_build_and_send_xid_pkt+0x12c/0x1c0 net/llc/llc_sap.c:270\n llc_ui_sendmsg+0x7bc/0xb1c net/llc/af_llc.c:997\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg net/socket.c:745 [inline]\n sock_sendmsg+0x194/0x274 net/socket.c:767\n splice_to_socket+0x7cc/0xd58 fs/splice.c:881\n do_splice_from fs/splice.c:933 [inline]\n direct_splice_actor+0xe4/0x1c0 fs/splice.c:1142\n splice_direct_to_actor+0x2a0/0x7e4 fs/splice.c:1088\n do_splice_direct+0x20c/0x348 fs/splice.c:1194\n do_sendfile+0x4bc/0xc70 fs/read_write.c:1254\n __do_sys_sendfile64 fs/read_write.c:1322 [inline]\n __se_sys_sendfile64 fs/read_write.c:1308 [inline]\n __arm64_sys_sendfile64+0x160/0x3b4 fs/read_write.c:1308\n __invoke_syscall arch/arm64/kernel/syscall.c:37 [inline]\n invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:51\n el0_svc_common+0x130/0x23c arch/arm64/kernel/syscall.c:136\n do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:155\n el0_svc+0x54/0x158 arch/arm64/kernel/entry-common.c:678\n el0t_64_sync_handler+0x84/0xfc arch/arm64/kernel/entry-common.c:696\n el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:595\nCode: aa1803e6 aa1903e7 a90023f5 94792f6a (d4210000)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26636",
"url": "https://www.suse.com/security/cve/CVE-2024-26636"
},
{
"category": "external",
"summary": "SUSE Bug 1221659 for CVE-2024-26636",
"url": "https://bugzilla.suse.com/1221659"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-26636"
},
{
"cve": "CVE-2024-26641",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26641"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv()\n\nsyzbot found __ip6_tnl_rcv() could access unitiliazed data [1].\n\nCall pskb_inet_may_pull() to fix this, and initialize ipv6h\nvariable after this call as it can change skb-\u003ehead.\n\n[1]\n BUG: KMSAN: uninit-value in __INET_ECN_decapsulate include/net/inet_ecn.h:253 [inline]\n BUG: KMSAN: uninit-value in INET_ECN_decapsulate include/net/inet_ecn.h:275 [inline]\n BUG: KMSAN: uninit-value in IP6_ECN_decapsulate+0x7df/0x1e50 include/net/inet_ecn.h:321\n __INET_ECN_decapsulate include/net/inet_ecn.h:253 [inline]\n INET_ECN_decapsulate include/net/inet_ecn.h:275 [inline]\n IP6_ECN_decapsulate+0x7df/0x1e50 include/net/inet_ecn.h:321\n ip6ip6_dscp_ecn_decapsulate+0x178/0x1b0 net/ipv6/ip6_tunnel.c:727\n __ip6_tnl_rcv+0xd4e/0x1590 net/ipv6/ip6_tunnel.c:845\n ip6_tnl_rcv+0xce/0x100 net/ipv6/ip6_tunnel.c:888\n gre_rcv+0x143f/0x1870\n ip6_protocol_deliver_rcu+0xda6/0x2a60 net/ipv6/ip6_input.c:438\n ip6_input_finish net/ipv6/ip6_input.c:483 [inline]\n NF_HOOK include/linux/netfilter.h:314 [inline]\n ip6_input+0x15d/0x430 net/ipv6/ip6_input.c:492\n ip6_mc_input+0xa7e/0xc80 net/ipv6/ip6_input.c:586\n dst_input include/net/dst.h:461 [inline]\n ip6_rcv_finish+0x5db/0x870 net/ipv6/ip6_input.c:79\n NF_HOOK include/linux/netfilter.h:314 [inline]\n ipv6_rcv+0xda/0x390 net/ipv6/ip6_input.c:310\n __netif_receive_skb_one_core net/core/dev.c:5532 [inline]\n __netif_receive_skb+0x1a6/0x5a0 net/core/dev.c:5646\n netif_receive_skb_internal net/core/dev.c:5732 [inline]\n netif_receive_skb+0x58/0x660 net/core/dev.c:5791\n tun_rx_batched+0x3ee/0x980 drivers/net/tun.c:1555\n tun_get_user+0x53af/0x66d0 drivers/net/tun.c:2002\n tun_chr_write_iter+0x3af/0x5d0 drivers/net/tun.c:2048\n call_write_iter include/linux/fs.h:2084 [inline]\n new_sync_write fs/read_write.c:497 [inline]\n vfs_write+0x786/0x1200 fs/read_write.c:590\n ksys_write+0x20f/0x4c0 fs/read_write.c:643\n __do_sys_write fs/read_write.c:655 [inline]\n __se_sys_write fs/read_write.c:652 [inline]\n __x64_sys_write+0x93/0xd0 fs/read_write.c:652\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0x6d/0x140 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x63/0x6b\n\nUninit was created at:\n slab_post_alloc_hook+0x129/0xa70 mm/slab.h:768\n slab_alloc_node mm/slub.c:3478 [inline]\n kmem_cache_alloc_node+0x5e9/0xb10 mm/slub.c:3523\n kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:560\n __alloc_skb+0x318/0x740 net/core/skbuff.c:651\n alloc_skb include/linux/skbuff.h:1286 [inline]\n alloc_skb_with_frags+0xc8/0xbd0 net/core/skbuff.c:6334\n sock_alloc_send_pskb+0xa80/0xbf0 net/core/sock.c:2787\n tun_alloc_skb drivers/net/tun.c:1531 [inline]\n tun_get_user+0x1e8a/0x66d0 drivers/net/tun.c:1846\n tun_chr_write_iter+0x3af/0x5d0 drivers/net/tun.c:2048\n call_write_iter include/linux/fs.h:2084 [inline]\n new_sync_write fs/read_write.c:497 [inline]\n vfs_write+0x786/0x1200 fs/read_write.c:590\n ksys_write+0x20f/0x4c0 fs/read_write.c:643\n __do_sys_write fs/read_write.c:655 [inline]\n __se_sys_write fs/read_write.c:652 [inline]\n __x64_sys_write+0x93/0xd0 fs/read_write.c:652\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0x6d/0x140 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x63/0x6b\n\nCPU: 0 PID: 5034 Comm: syz-executor331 Not tainted 6.7.0-syzkaller-00562-g9f8413c4a66f #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26641",
"url": "https://www.suse.com/security/cve/CVE-2024-26641"
},
{
"category": "external",
"summary": "SUSE Bug 1221654 for CVE-2024-26641",
"url": "https://bugzilla.suse.com/1221654"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-26641"
},
{
"cve": "CVE-2024-26663",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26663"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntipc: Check the bearer type before calling tipc_udp_nl_bearer_add()\n\nsyzbot reported the following general protection fault [1]:\n\ngeneral protection fault, probably for non-canonical address 0xdffffc0000000010: 0000 [#1] PREEMPT SMP KASAN\nKASAN: null-ptr-deref in range [0x0000000000000080-0x0000000000000087]\n...\nRIP: 0010:tipc_udp_is_known_peer+0x9c/0x250 net/tipc/udp_media.c:291\n...\nCall Trace:\n \u003cTASK\u003e\n tipc_udp_nl_bearer_add+0x212/0x2f0 net/tipc/udp_media.c:646\n tipc_nl_bearer_add+0x21e/0x360 net/tipc/bearer.c:1089\n genl_family_rcv_msg_doit+0x1fc/0x2e0 net/netlink/genetlink.c:972\n genl_family_rcv_msg net/netlink/genetlink.c:1052 [inline]\n genl_rcv_msg+0x561/0x800 net/netlink/genetlink.c:1067\n netlink_rcv_skb+0x16b/0x440 net/netlink/af_netlink.c:2544\n genl_rcv+0x28/0x40 net/netlink/genetlink.c:1076\n netlink_unicast_kernel net/netlink/af_netlink.c:1341 [inline]\n netlink_unicast+0x53b/0x810 net/netlink/af_netlink.c:1367\n netlink_sendmsg+0x8b7/0xd70 net/netlink/af_netlink.c:1909\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0xd5/0x180 net/socket.c:745\n ____sys_sendmsg+0x6ac/0x940 net/socket.c:2584\n ___sys_sendmsg+0x135/0x1d0 net/socket.c:2638\n __sys_sendmsg+0x117/0x1e0 net/socket.c:2667\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0x40/0x110 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x63/0x6b\n\nThe cause of this issue is that when tipc_nl_bearer_add() is called with\nthe TIPC_NLA_BEARER_UDP_OPTS attribute, tipc_udp_nl_bearer_add() is called\neven if the bearer is not UDP.\n\ntipc_udp_is_known_peer() called by tipc_udp_nl_bearer_add() assumes that\nthe media_ptr field of the tipc_bearer has an udp_bearer type object, so\nthe function goes crazy for non-UDP bearers.\n\nThis patch fixes the issue by checking the bearer type before calling\ntipc_udp_nl_bearer_add() in tipc_nl_bearer_add().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26663",
"url": "https://www.suse.com/security/cve/CVE-2024-26663"
},
{
"category": "external",
"summary": "SUSE Bug 1222326 for CVE-2024-26663",
"url": "https://bugzilla.suse.com/1222326"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-26663"
},
{
"cve": "CVE-2024-26665",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26665"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntunnels: fix out of bounds access when building IPv6 PMTU error\n\nIf the ICMPv6 error is built from a non-linear skb we get the following\nsplat,\n\n BUG: KASAN: slab-out-of-bounds in do_csum+0x220/0x240\n Read of size 4 at addr ffff88811d402c80 by task netperf/820\n CPU: 0 PID: 820 Comm: netperf Not tainted 6.8.0-rc1+ #543\n ...\n kasan_report+0xd8/0x110\n do_csum+0x220/0x240\n csum_partial+0xc/0x20\n skb_tunnel_check_pmtu+0xeb9/0x3280\n vxlan_xmit_one+0x14c2/0x4080\n vxlan_xmit+0xf61/0x5c00\n dev_hard_start_xmit+0xfb/0x510\n __dev_queue_xmit+0x7cd/0x32a0\n br_dev_queue_push_xmit+0x39d/0x6a0\n\nUse skb_checksum instead of csum_partial who cannot deal with non-linear\nSKBs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26665",
"url": "https://www.suse.com/security/cve/CVE-2024-26665"
},
{
"category": "external",
"summary": "SUSE Bug 1222328 for CVE-2024-26665",
"url": "https://bugzilla.suse.com/1222328"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-26665"
},
{
"cve": "CVE-2024-26676",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26676"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naf_unix: Call kfree_skb() for dead unix_(sk)-\u003eoob_skb in GC.\n\nsyzbot reported a warning [0] in __unix_gc() with a repro, which\ncreates a socketpair and sends one socket\u0027s fd to itself using the\npeer.\n\n socketpair(AF_UNIX, SOCK_STREAM, 0, [3, 4]) = 0\n sendmsg(4, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base=\"\\360\", iov_len=1}],\n msg_iovlen=1, msg_control=[{cmsg_len=20, cmsg_level=SOL_SOCKET,\n cmsg_type=SCM_RIGHTS, cmsg_data=[3]}],\n msg_controllen=24, msg_flags=0}, MSG_OOB|MSG_PROBE|MSG_DONTWAIT|MSG_ZEROCOPY) = 1\n\nThis forms a self-cyclic reference that GC should finally untangle\nbut does not due to lack of MSG_OOB handling, resulting in memory\nleak.\n\nRecently, commit 11498715f266 (\"af_unix: Remove io_uring code for\nGC.\") removed io_uring\u0027s dead code in GC and revealed the problem.\n\nThe code was executed at the final stage of GC and unconditionally\nmoved all GC candidates from gc_candidates to gc_inflight_list.\nThat papered over the reported problem by always making the following\nWARN_ON_ONCE(!list_empty(\u0026gc_candidates)) false.\n\nThe problem has been there since commit 2aab4b969002 (\"af_unix: fix\nstruct pid leaks in OOB support\") added full scm support for MSG_OOB\nwhile fixing another bug.\n\nTo fix this problem, we must call kfree_skb() for unix_sk(sk)-\u003eoob_skb\nif the socket still exists in gc_candidates after purging collected skb.\n\nThen, we need to set NULL to oob_skb before calling kfree_skb() because\nit calls last fput() and triggers unix_release_sock(), where we call\nduplicate kfree_skb(u-\u003eoob_skb) if not NULL.\n\nNote that the leaked socket remained being linked to a global list, so\nkmemleak also could not detect it. We need to check /proc/net/protocol\nto notice the unfreed socket.\n\n[0]:\nWARNING: CPU: 0 PID: 2863 at net/unix/garbage.c:345 __unix_gc+0xc74/0xe80 net/unix/garbage.c:345\nModules linked in:\nCPU: 0 PID: 2863 Comm: kworker/u4:11 Not tainted 6.8.0-rc1-syzkaller-00583-g1701940b1a02 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024\nWorkqueue: events_unbound __unix_gc\nRIP: 0010:__unix_gc+0xc74/0xe80 net/unix/garbage.c:345\nCode: 8b 5c 24 50 e9 86 f8 ff ff e8 f8 e4 22 f8 31 d2 48 c7 c6 30 6a 69 89 4c 89 ef e8 97 ef ff ff e9 80 f9 ff ff e8 dd e4 22 f8 90 \u003c0f\u003e 0b 90 e9 7b fd ff ff 48 89 df e8 5c e7 7c f8 e9 d3 f8 ff ff e8\nRSP: 0018:ffffc9000b03fba0 EFLAGS: 00010293\nRAX: 0000000000000000 RBX: ffffc9000b03fc10 RCX: ffffffff816c493e\nRDX: ffff88802c02d940 RSI: ffffffff896982f3 RDI: ffffc9000b03fb30\nRBP: ffffc9000b03fce0 R08: 0000000000000001 R09: fffff52001607f66\nR10: 0000000000000003 R11: 0000000000000002 R12: dffffc0000000000\nR13: ffffc9000b03fc10 R14: ffffc9000b03fc10 R15: 0000000000000001\nFS: 0000000000000000(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00005559c8677a60 CR3: 000000000d57a000 CR4: 00000000003506f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n process_one_work+0x889/0x15e0 kernel/workqueue.c:2633\n process_scheduled_works kernel/workqueue.c:2706 [inline]\n worker_thread+0x8b9/0x12a0 kernel/workqueue.c:2787\n kthread+0x2c6/0x3b0 kernel/kthread.c:388\n ret_from_fork+0x45/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1b/0x30 arch/x86/entry/entry_64.S:242\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26676",
"url": "https://www.suse.com/security/cve/CVE-2024-26676"
},
{
"category": "external",
"summary": "SUSE Bug 1222380 for CVE-2024-26676",
"url": "https://bugzilla.suse.com/1222380"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-26676"
},
{
"cve": "CVE-2024-26691",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26691"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: Fix circular locking dependency\n\nThe rule inside kvm enforces that the vcpu-\u003emutex is taken *inside*\nkvm-\u003elock. The rule is violated by the pkvm_create_hyp_vm() which acquires\nthe kvm-\u003elock while already holding the vcpu-\u003emutex lock from\nkvm_vcpu_ioctl(). Avoid the circular locking dependency altogether by\nprotecting the hyp vm handle with the config_lock, much like we already\ndo for other forms of VM-scoped data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26691",
"url": "https://www.suse.com/security/cve/CVE-2024-26691"
},
{
"category": "external",
"summary": "SUSE Bug 1222463 for CVE-2024-26691",
"url": "https://bugzilla.suse.com/1222463"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-26691"
},
{
"cve": "CVE-2024-26734",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26734"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndevlink: fix possible use-after-free and memory leaks in devlink_init()\n\nThe pernet operations structure for the subsystem must be registered\nbefore registering the generic netlink family.\n\nMake an unregister in case of unsuccessful registration.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26734",
"url": "https://www.suse.com/security/cve/CVE-2024-26734"
},
{
"category": "external",
"summary": "SUSE Bug 1222438 for CVE-2024-26734",
"url": "https://bugzilla.suse.com/1222438"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-26734"
},
{
"cve": "CVE-2024-26750",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26750"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naf_unix: Drop oob_skb ref before purging queue in GC.\n\nsyzbot reported another task hung in __unix_gc(). [0]\n\nThe current while loop assumes that all of the left candidates\nhave oob_skb and calling kfree_skb(oob_skb) releases the remaining\ncandidates.\n\nHowever, I missed a case that oob_skb has self-referencing fd and\nanother fd and the latter sk is placed before the former in the\ncandidate list. Then, the while loop never proceeds, resulting\nthe task hung.\n\n__unix_gc() has the same loop just before purging the collected skb,\nso we can call kfree_skb(oob_skb) there and let __skb_queue_purge()\nrelease all inflight sockets.\n\n[0]:\nSending NMI from CPU 0 to CPUs 1:\nNMI backtrace for cpu 1\nCPU: 1 PID: 2784 Comm: kworker/u4:8 Not tainted 6.8.0-rc4-syzkaller-01028-g71b605d32017 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024\nWorkqueue: events_unbound __unix_gc\nRIP: 0010:__sanitizer_cov_trace_pc+0x0/0x70 kernel/kcov.c:200\nCode: 89 fb e8 23 00 00 00 48 8b 3d 84 f5 1a 0c 48 89 de 5b e9 43 26 57 00 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 \u003cf3\u003e 0f 1e fa 48 8b 04 24 65 48 8b 0d 90 52 70 7e 65 8b 15 91 52 70\nRSP: 0018:ffffc9000a17fa78 EFLAGS: 00000287\nRAX: ffffffff8a0a6108 RBX: ffff88802b6c2640 RCX: ffff88802c0b3b80\nRDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000000\nRBP: ffffc9000a17fbf0 R08: ffffffff89383f1d R09: 1ffff1100ee5ff84\nR10: dffffc0000000000 R11: ffffed100ee5ff85 R12: 1ffff110056d84ee\nR13: ffffc9000a17fae0 R14: 0000000000000000 R15: ffffffff8f47b840\nFS: 0000000000000000(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007ffef5687ff8 CR3: 0000000029b34000 CR4: 00000000003506f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cNMI\u003e\n \u003c/NMI\u003e\n \u003cTASK\u003e\n __unix_gc+0xe69/0xf40 net/unix/garbage.c:343\n process_one_work kernel/workqueue.c:2633 [inline]\n process_scheduled_works+0x913/0x1420 kernel/workqueue.c:2706\n worker_thread+0xa5f/0x1000 kernel/workqueue.c:2787\n kthread+0x2ef/0x390 kernel/kthread.c:388\n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1b/0x30 arch/x86/entry/entry_64.S:242\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26750",
"url": "https://www.suse.com/security/cve/CVE-2024-26750"
},
{
"category": "external",
"summary": "SUSE Bug 1222617 for CVE-2024-26750",
"url": "https://bugzilla.suse.com/1222617"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-26750"
},
{
"cve": "CVE-2024-26758",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26758"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd: Don\u0027t ignore suspended array in md_check_recovery()\n\nmddev_suspend() never stop sync_thread, hence it doesn\u0027t make sense to\nignore suspended array in md_check_recovery(), which might cause\nsync_thread can\u0027t be unregistered.\n\nAfter commit f52f5c71f3d4 (\"md: fix stopping sync thread\"), following\nhang can be triggered by test shell/integrity-caching.sh:\n\n1) suspend the array:\nraid_postsuspend\n mddev_suspend\n\n2) stop the array:\nraid_dtr\n md_stop\n __md_stop_writes\n stop_sync_thread\n set_bit(MD_RECOVERY_INTR, \u0026mddev-\u003erecovery);\n md_wakeup_thread_directly(mddev-\u003esync_thread);\n wait_event(..., !test_bit(MD_RECOVERY_RUNNING, \u0026mddev-\u003erecovery))\n\n3) sync thread done:\nmd_do_sync\n set_bit(MD_RECOVERY_DONE, \u0026mddev-\u003erecovery);\n md_wakeup_thread(mddev-\u003ethread);\n\n4) daemon thread can\u0027t unregister sync thread:\nmd_check_recovery\n if (mddev-\u003esuspended)\n return; -\u003e return directly\n md_read_sync_thread\n clear_bit(MD_RECOVERY_RUNNING, \u0026mddev-\u003erecovery);\n -\u003e MD_RECOVERY_RUNNING can\u0027t be cleared, hence step 2 hang;\n\nThis problem is not just related to dm-raid, fix it by ignoring\nsuspended array in md_check_recovery(). And follow up patches will\nimprove dm-raid better to frozen sync thread during suspend.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26758",
"url": "https://www.suse.com/security/cve/CVE-2024-26758"
},
{
"category": "external",
"summary": "SUSE Bug 1230341 for CVE-2024-26758",
"url": "https://bugzilla.suse.com/1230341"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-26758"
},
{
"cve": "CVE-2024-26767",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26767"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: fixed integer types and null check locations\n\n[why]:\nissues fixed:\n- comparison with wider integer type in loop condition which can cause\ninfinite loops\n- pointer dereference before null check",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26767",
"url": "https://www.suse.com/security/cve/CVE-2024-26767"
},
{
"category": "external",
"summary": "SUSE Bug 1230339 for CVE-2024-26767",
"url": "https://bugzilla.suse.com/1230339"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-26767"
},
{
"cve": "CVE-2024-26780",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26780"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naf_unix: Fix task hung while purging oob_skb in GC.\n\nsyzbot reported a task hung; at the same time, GC was looping infinitely\nin list_for_each_entry_safe() for OOB skb. [0]\n\nsyzbot demonstrated that the list_for_each_entry_safe() was not actually\nsafe in this case.\n\nA single skb could have references for multiple sockets. If we free such\na skb in the list_for_each_entry_safe(), the current and next sockets could\nbe unlinked in a single iteration.\n\nunix_notinflight() uses list_del_init() to unlink the socket, so the\nprefetched next socket forms a loop itself and list_for_each_entry_safe()\nnever stops.\n\nHere, we must use while() and make sure we always fetch the first socket.\n\n[0]:\nSending NMI from CPU 0 to CPUs 1:\nNMI backtrace for cpu 1\nCPU: 1 PID: 5065 Comm: syz-executor236 Not tainted 6.8.0-rc3-syzkaller-00136-g1f719a2f3fa6 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024\nRIP: 0010:preempt_count arch/x86/include/asm/preempt.h:26 [inline]\nRIP: 0010:check_kcov_mode kernel/kcov.c:173 [inline]\nRIP: 0010:__sanitizer_cov_trace_pc+0xd/0x60 kernel/kcov.c:207\nCode: cc cc cc cc 66 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 65 48 8b 14 25 40 c2 03 00 \u003c65\u003e 8b 05 b4 7c 78 7e a9 00 01 ff 00 48 8b 34 24 74 0f f6 c4 01 74\nRSP: 0018:ffffc900033efa58 EFLAGS: 00000283\nRAX: ffff88807b077800 RBX: ffff88807b077800 RCX: 1ffffffff27b1189\nRDX: ffff88802a5a3b80 RSI: ffffffff8968488d RDI: ffff88807b077f70\nRBP: ffffc900033efbb0 R08: 0000000000000001 R09: fffffbfff27a900c\nR10: ffffffff93d48067 R11: ffffffff8ae000eb R12: ffff88807b077800\nR13: dffffc0000000000 R14: ffff88807b077e40 R15: 0000000000000001\nFS: 0000000000000000(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000564f4fc1e3a8 CR3: 000000000d57a000 CR4: 00000000003506f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cNMI\u003e\n \u003c/NMI\u003e\n \u003cTASK\u003e\n unix_gc+0x563/0x13b0 net/unix/garbage.c:319\n unix_release_sock+0xa93/0xf80 net/unix/af_unix.c:683\n unix_release+0x91/0xf0 net/unix/af_unix.c:1064\n __sock_release+0xb0/0x270 net/socket.c:659\n sock_close+0x1c/0x30 net/socket.c:1421\n __fput+0x270/0xb80 fs/file_table.c:376\n task_work_run+0x14f/0x250 kernel/task_work.c:180\n exit_task_work include/linux/task_work.h:38 [inline]\n do_exit+0xa8a/0x2ad0 kernel/exit.c:871\n do_group_exit+0xd4/0x2a0 kernel/exit.c:1020\n __do_sys_exit_group kernel/exit.c:1031 [inline]\n __se_sys_exit_group kernel/exit.c:1029 [inline]\n __x64_sys_exit_group+0x3e/0x50 kernel/exit.c:1029\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xd5/0x270 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x6f/0x77\nRIP: 0033:0x7f9d6cbdac09\nCode: Unable to access opcode bytes at 0x7f9d6cbdabdf.\nRSP: 002b:00007fff5952feb8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7\nRAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9d6cbdac09\nRDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000\nRBP: 00007f9d6cc552b0 R08: ffffffffffffffb8 R09: 0000000000000006\nR10: 0000000000000006 R11: 0000000000000246 R12: 00007f9d6cc552b0\nR13: 0000000000000000 R14: 00007f9d6cc55d00 R15: 00007f9d6cbabe70\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26780",
"url": "https://www.suse.com/security/cve/CVE-2024-26780"
},
{
"category": "external",
"summary": "SUSE Bug 1222588 for CVE-2024-26780",
"url": "https://bugzilla.suse.com/1222588"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-26780"
},
{
"cve": "CVE-2024-26785",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26785"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommufd: Fix protection fault in iommufd_test_syz_conv_iova\n\nSyzkaller reported the following bug:\n\n general protection fault, probably for non-canonical address 0xdffffc0000000038: 0000 [#1] SMP KASAN\n KASAN: null-ptr-deref in range [0x00000000000001c0-0x00000000000001c7]\n Call Trace:\n lock_acquire\n lock_acquire+0x1ce/0x4f0\n down_read+0x93/0x4a0\n iommufd_test_syz_conv_iova+0x56/0x1f0\n iommufd_test_access_rw.isra.0+0x2ec/0x390\n iommufd_test+0x1058/0x1e30\n iommufd_fops_ioctl+0x381/0x510\n vfs_ioctl\n __do_sys_ioctl\n __se_sys_ioctl\n __x64_sys_ioctl+0x170/0x1e0\n do_syscall_x64\n do_syscall_64+0x71/0x140\n\nThis is because the new iommufd_access_change_ioas() sets access-\u003eioas to\nNULL during its process, so the lock might be gone in a concurrent racing\ncontext.\n\nFix this by doing the same access-\u003eioas sanity as iommufd_access_rw() and\niommufd_access_pin_pages() functions do.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26785",
"url": "https://www.suse.com/security/cve/CVE-2024-26785"
},
{
"category": "external",
"summary": "SUSE Bug 1222779 for CVE-2024-26785",
"url": "https://bugzilla.suse.com/1222779"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-26785"
},
{
"cve": "CVE-2024-26813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26813"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvfio/platform: Create persistent IRQ handlers\n\nThe vfio-platform SET_IRQS ioctl currently allows loopback triggering of\nan interrupt before a signaling eventfd has been configured by the user,\nwhich thereby allows a NULL pointer dereference.\n\nRather than register the IRQ relative to a valid trigger, register all\nIRQs in a disabled state in the device open path. This allows mask\noperations on the IRQ to nest within the overall enable state governed\nby a valid eventfd signal. This decouples @masked, protected by the\n@locked spinlock from @trigger, protected via the @igate mutex.\n\nIn doing so, it\u0027s guaranteed that changes to @trigger cannot race the\nIRQ handlers because the IRQ handler is synchronously disabled before\nmodifying the trigger, and loopback triggering of the IRQ via ioctl is\nsafe due to serialization with trigger changes via igate.\n\nFor compatibility, request_irq() failures are maintained to be local to\nthe SET_IRQS ioctl rather than a fatal error in the open device path.\nThis allows, for example, a userspace driver with polling mode support\nto continue to work regardless of moving the request_irq() call site.\nThis necessarily blocks all SET_IRQS access to the failed index.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26813",
"url": "https://www.suse.com/security/cve/CVE-2024-26813"
},
{
"category": "external",
"summary": "SUSE Bug 1222809 for CVE-2024-26813",
"url": "https://bugzilla.suse.com/1222809"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-26813"
},
{
"cve": "CVE-2024-26814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26814"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvfio/fsl-mc: Block calling interrupt handler without trigger\n\nThe eventfd_ctx trigger pointer of the vfio_fsl_mc_irq object is\ninitially NULL and may become NULL if the user sets the trigger\neventfd to -1. The interrupt handler itself is guaranteed that\ntrigger is always valid between request_irq() and free_irq(), but\nthe loopback testing mechanisms to invoke the handler function\nneed to test the trigger. The triggering and setting ioctl paths\nboth make use of igate and are therefore mutually exclusive.\n\nThe vfio-fsl-mc driver does not make use of irqfds, nor does it\nsupport any sort of masking operations, therefore unlike vfio-pci\nand vfio-platform, the flow can remain essentially unchanged.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26814",
"url": "https://www.suse.com/security/cve/CVE-2024-26814"
},
{
"category": "external",
"summary": "SUSE Bug 1222810 for CVE-2024-26814",
"url": "https://bugzilla.suse.com/1222810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-26814"
},
{
"cve": "CVE-2024-26826",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26826"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: fix data re-injection from stale subflow\n\nWhen the MPTCP PM detects that a subflow is stale, all the packet\nscheduler must re-inject all the mptcp-level unacked data. To avoid\nacquiring unneeded locks, it first try to check if any unacked data\nis present at all in the RTX queue, but such check is currently\nbroken, as it uses TCP-specific helper on an MPTCP socket.\n\nFunnily enough fuzzers and static checkers are happy, as the accessed\nmemory still belongs to the mptcp_sock struct, and even from a\nfunctional perspective the recovery completed successfully, as\nthe short-cut test always failed.\n\nA recent unrelated TCP change - commit d5fed5addb2b (\"tcp: reorganize\ntcp_sock fast path variables\") - exposed the issue, as the tcp field\nreorganization makes the mptcp code always skip the re-inection.\n\nFix the issue dropping the bogus call: we are on a slow path, the early\noptimization proved once again to be evil.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26826",
"url": "https://www.suse.com/security/cve/CVE-2024-26826"
},
{
"category": "external",
"summary": "SUSE Bug 1223010 for CVE-2024-26826",
"url": "https://bugzilla.suse.com/1223010"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-26826"
},
{
"cve": "CVE-2024-26845",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26845"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: target: core: Add TMF to tmr_list handling\n\nAn abort that is responded to by iSCSI itself is added to tmr_list but does\nnot go to target core. A LUN_RESET that goes through tmr_list takes a\nrefcounter on the abort and waits for completion. However, the abort will\nbe never complete because it was not started in target core.\n\n Unable to locate ITT: 0x05000000 on CID: 0\n Unable to locate RefTaskTag: 0x05000000 on CID: 0.\n wait_for_tasks: Stopping tmf LUN_RESET with tag 0x0 ref_task_tag 0x0 i_state 34 t_state ISTATE_PROCESSING refcnt 2 transport_state active,stop,fabric_stop\n wait for tasks: tmf LUN_RESET with tag 0x0 ref_task_tag 0x0 i_state 34 t_state ISTATE_PROCESSING refcnt 2 transport_state active,stop,fabric_stop\n...\n INFO: task kworker/0:2:49 blocked for more than 491 seconds.\n task:kworker/0:2 state:D stack: 0 pid: 49 ppid: 2 flags:0x00000800\n Workqueue: events target_tmr_work [target_core_mod]\nCall Trace:\n __switch_to+0x2c4/0x470\n _schedule+0x314/0x1730\n schedule+0x64/0x130\n schedule_timeout+0x168/0x430\n wait_for_completion+0x140/0x270\n target_put_cmd_and_wait+0x64/0xb0 [target_core_mod]\n core_tmr_lun_reset+0x30/0xa0 [target_core_mod]\n target_tmr_work+0xc8/0x1b0 [target_core_mod]\n process_one_work+0x2d4/0x5d0\n worker_thread+0x78/0x6c0\n\nTo fix this, only add abort to tmr_list if it will be handled by target\ncore.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26845",
"url": "https://www.suse.com/security/cve/CVE-2024-26845"
},
{
"category": "external",
"summary": "SUSE Bug 1223018 for CVE-2024-26845",
"url": "https://bugzilla.suse.com/1223018"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-26845"
},
{
"cve": "CVE-2024-26863",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26863"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhsr: Fix uninit-value access in hsr_get_node()\n\nKMSAN reported the following uninit-value access issue [1]:\n\n=====================================================\nBUG: KMSAN: uninit-value in hsr_get_node+0xa2e/0xa40 net/hsr/hsr_framereg.c:246\n hsr_get_node+0xa2e/0xa40 net/hsr/hsr_framereg.c:246\n fill_frame_info net/hsr/hsr_forward.c:577 [inline]\n hsr_forward_skb+0xe12/0x30e0 net/hsr/hsr_forward.c:615\n hsr_dev_xmit+0x1a1/0x270 net/hsr/hsr_device.c:223\n __netdev_start_xmit include/linux/netdevice.h:4940 [inline]\n netdev_start_xmit include/linux/netdevice.h:4954 [inline]\n xmit_one net/core/dev.c:3548 [inline]\n dev_hard_start_xmit+0x247/0xa10 net/core/dev.c:3564\n __dev_queue_xmit+0x33b8/0x5130 net/core/dev.c:4349\n dev_queue_xmit include/linux/netdevice.h:3134 [inline]\n packet_xmit+0x9c/0x6b0 net/packet/af_packet.c:276\n packet_snd net/packet/af_packet.c:3087 [inline]\n packet_sendmsg+0x8b1d/0x9f30 net/packet/af_packet.c:3119\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg net/socket.c:745 [inline]\n __sys_sendto+0x735/0xa10 net/socket.c:2191\n __do_sys_sendto net/socket.c:2203 [inline]\n __se_sys_sendto net/socket.c:2199 [inline]\n __x64_sys_sendto+0x125/0x1c0 net/socket.c:2199\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0x6d/0x140 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x63/0x6b\n\nUninit was created at:\n slab_post_alloc_hook+0x129/0xa70 mm/slab.h:768\n slab_alloc_node mm/slub.c:3478 [inline]\n kmem_cache_alloc_node+0x5e9/0xb10 mm/slub.c:3523\n kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:560\n __alloc_skb+0x318/0x740 net/core/skbuff.c:651\n alloc_skb include/linux/skbuff.h:1286 [inline]\n alloc_skb_with_frags+0xc8/0xbd0 net/core/skbuff.c:6334\n sock_alloc_send_pskb+0xa80/0xbf0 net/core/sock.c:2787\n packet_alloc_skb net/packet/af_packet.c:2936 [inline]\n packet_snd net/packet/af_packet.c:3030 [inline]\n packet_sendmsg+0x70e8/0x9f30 net/packet/af_packet.c:3119\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg net/socket.c:745 [inline]\n __sys_sendto+0x735/0xa10 net/socket.c:2191\n __do_sys_sendto net/socket.c:2203 [inline]\n __se_sys_sendto net/socket.c:2199 [inline]\n __x64_sys_sendto+0x125/0x1c0 net/socket.c:2199\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0x6d/0x140 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x63/0x6b\n\nCPU: 1 PID: 5033 Comm: syz-executor334 Not tainted 6.7.0-syzkaller-00562-g9f8413c4a66f #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023\n=====================================================\n\nIf the packet type ID field in the Ethernet header is either ETH_P_PRP or\nETH_P_HSR, but it is not followed by an HSR tag, hsr_get_skb_sequence_nr()\nreads an invalid value as a sequence number. This causes the above issue.\n\nThis patch fixes the issue by returning NULL if the Ethernet header is not\nfollowed by an HSR tag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26863",
"url": "https://www.suse.com/security/cve/CVE-2024-26863"
},
{
"category": "external",
"summary": "SUSE Bug 1223021 for CVE-2024-26863",
"url": "https://bugzilla.suse.com/1223021"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-26863"
},
{
"cve": "CVE-2024-26889",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26889"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_core: Fix possible buffer overflow\n\nstruct hci_dev_info has a fixed size name[8] field so in the event that\nhdev-\u003ename is bigger than that strcpy would attempt to write past its\nsize, so this fixes this problem by switching to use strscpy.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26889",
"url": "https://www.suse.com/security/cve/CVE-2024-26889"
},
{
"category": "external",
"summary": "SUSE Bug 1228195 for CVE-2024-26889",
"url": "https://bugzilla.suse.com/1228195"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-26889"
},
{
"cve": "CVE-2024-26920",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26920"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing/trigger: Fix to return error if failed to alloc snapshot\n\nFix register_snapshot_trigger() to return error code if it failed to\nallocate a snapshot instead of 0 (success). Unless that, it will register\nsnapshot trigger without an error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26920",
"url": "https://www.suse.com/security/cve/CVE-2024-26920"
},
{
"category": "external",
"summary": "SUSE Bug 1228237 for CVE-2024-26920",
"url": "https://bugzilla.suse.com/1228237"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-26920"
},
{
"cve": "CVE-2024-26944",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26944"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: zoned: fix use-after-free in do_zone_finish()\n\nShinichiro reported the following use-after-free triggered by the device\nreplace operation in fstests btrfs/070.\n\n BTRFS info (device nullb1): scrub: finished on devid 1 with status: 0\n ==================================================================\n BUG: KASAN: slab-use-after-free in do_zone_finish+0x91a/0xb90 [btrfs]\n Read of size 8 at addr ffff8881543c8060 by task btrfs-cleaner/3494007\n\n CPU: 0 PID: 3494007 Comm: btrfs-cleaner Tainted: G W 6.8.0-rc5-kts #1\n Hardware name: Supermicro Super Server/X11SPi-TF, BIOS 3.3 02/21/2020\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x5b/0x90\n print_report+0xcf/0x670\n ? __virt_addr_valid+0x200/0x3e0\n kasan_report+0xd8/0x110\n ? do_zone_finish+0x91a/0xb90 [btrfs]\n ? do_zone_finish+0x91a/0xb90 [btrfs]\n do_zone_finish+0x91a/0xb90 [btrfs]\n btrfs_delete_unused_bgs+0x5e1/0x1750 [btrfs]\n ? __pfx_btrfs_delete_unused_bgs+0x10/0x10 [btrfs]\n ? btrfs_put_root+0x2d/0x220 [btrfs]\n ? btrfs_clean_one_deleted_snapshot+0x299/0x430 [btrfs]\n cleaner_kthread+0x21e/0x380 [btrfs]\n ? __pfx_cleaner_kthread+0x10/0x10 [btrfs]\n kthread+0x2e3/0x3c0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x31/0x70\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n\n Allocated by task 3493983:\n kasan_save_stack+0x33/0x60\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0xaa/0xb0\n btrfs_alloc_device+0xb3/0x4e0 [btrfs]\n device_list_add.constprop.0+0x993/0x1630 [btrfs]\n btrfs_scan_one_device+0x219/0x3d0 [btrfs]\n btrfs_control_ioctl+0x26e/0x310 [btrfs]\n __x64_sys_ioctl+0x134/0x1b0\n do_syscall_64+0x99/0x190\n entry_SYSCALL_64_after_hwframe+0x6e/0x76\n\n Freed by task 3494056:\n kasan_save_stack+0x33/0x60\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3f/0x60\n poison_slab_object+0x102/0x170\n __kasan_slab_free+0x32/0x70\n kfree+0x11b/0x320\n btrfs_rm_dev_replace_free_srcdev+0xca/0x280 [btrfs]\n btrfs_dev_replace_finishing+0xd7e/0x14f0 [btrfs]\n btrfs_dev_replace_by_ioctl+0x1286/0x25a0 [btrfs]\n btrfs_ioctl+0xb27/0x57d0 [btrfs]\n __x64_sys_ioctl+0x134/0x1b0\n do_syscall_64+0x99/0x190\n entry_SYSCALL_64_after_hwframe+0x6e/0x76\n\n The buggy address belongs to the object at ffff8881543c8000\n which belongs to the cache kmalloc-1k of size 1024\n The buggy address is located 96 bytes inside of\n freed 1024-byte region [ffff8881543c8000, ffff8881543c8400)\n\n The buggy address belongs to the physical page:\n page:00000000fe2c1285 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1543c8\n head:00000000fe2c1285 order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0\n flags: 0x17ffffc0000840(slab|head|node=0|zone=2|lastcpupid=0x1fffff)\n page_type: 0xffffffff()\n raw: 0017ffffc0000840 ffff888100042dc0 ffffea0019e8f200 dead000000000002\n raw: 0000000000000000 0000000000100010 00000001ffffffff 0000000000000000\n page dumped because: kasan: bad access detected\n\n Memory state around the buggy address:\n ffff8881543c7f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n ffff8881543c7f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n \u003effff8881543c8000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb\n ^\n ffff8881543c8080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb\n ffff8881543c8100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb\n\nThis UAF happens because we\u0027re accessing stale zone information of a\nalready removed btrfs_device in do_zone_finish().\n\nThe sequence of events is as follows:\n\nbtrfs_dev_replace_start\n btrfs_scrub_dev\n btrfs_dev_replace_finishing\n btrfs_dev_replace_update_device_in_mapping_tree \u003c-- devices replaced\n btrfs_rm_dev_replace_free_srcdev\n btrfs_free_device \u003c-- device freed\n\ncleaner_kthread\n btrfs_delete_unused_bgs\n btrfs_zone_finish\n do_zone_finish \u003c-- refers the freed device\n\nThe reason for this is that we\u0027re using a\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26944",
"url": "https://www.suse.com/security/cve/CVE-2024-26944"
},
{
"category": "external",
"summary": "SUSE Bug 1223731 for CVE-2024-26944",
"url": "https://bugzilla.suse.com/1223731"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-26944"
},
{
"cve": "CVE-2024-27012",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27012"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: restore set elements when delete set fails\n\nFrom abort path, nft_mapelem_activate() needs to restore refcounters to\nthe original state. Currently, it uses the set-\u003eops-\u003ewalk() to iterate\nover these set elements. The existing set iterator skips inactive\nelements in the next generation, this does not work from the abort path\nto restore the original state since it has to skip active elements\ninstead (not inactive ones).\n\nThis patch moves the check for inactive elements to the set iterator\ncallback, then it reverses the logic for the .activate case which\nneeds to skip active elements.\n\nToggle next generation bit for elements when delete set command is\ninvoked and call nft_clear() from .activate (abort) path to restore the\nnext generation bit.\n\nThe splat below shows an object in mappings memleak:\n\n[43929.457523] ------------[ cut here ]------------\n[43929.457532] WARNING: CPU: 0 PID: 1139 at include/net/netfilter/nf_tables.h:1237 nft_setelem_data_deactivate+0xe4/0xf0 [nf_tables]\n[...]\n[43929.458014] RIP: 0010:nft_setelem_data_deactivate+0xe4/0xf0 [nf_tables]\n[43929.458076] Code: 83 f8 01 77 ab 49 8d 7c 24 08 e8 37 5e d0 de 49 8b 6c 24 08 48 8d 7d 50 e8 e9 5c d0 de 8b 45 50 8d 50 ff 89 55 50 85 c0 75 86 \u003c0f\u003e 0b eb 82 0f 0b eb b3 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90\n[43929.458081] RSP: 0018:ffff888140f9f4b0 EFLAGS: 00010246\n[43929.458086] RAX: 0000000000000000 RBX: ffff8881434f5288 RCX: dffffc0000000000\n[43929.458090] RDX: 00000000ffffffff RSI: ffffffffa26d28a7 RDI: ffff88810ecc9550\n[43929.458093] RBP: ffff88810ecc9500 R08: 0000000000000001 R09: ffffed10281f3e8f\n[43929.458096] R10: 0000000000000003 R11: ffff0000ffff0000 R12: ffff8881434f52a0\n[43929.458100] R13: ffff888140f9f5f4 R14: ffff888151c7a800 R15: 0000000000000002\n[43929.458103] FS: 00007f0c687c4740(0000) GS:ffff888390800000(0000) knlGS:0000000000000000\n[43929.458107] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[43929.458111] CR2: 00007f58dbe5b008 CR3: 0000000123602005 CR4: 00000000001706f0\n[43929.458114] Call Trace:\n[43929.458118] \u003cTASK\u003e\n[43929.458121] ? __warn+0x9f/0x1a0\n[43929.458127] ? nft_setelem_data_deactivate+0xe4/0xf0 [nf_tables]\n[43929.458188] ? report_bug+0x1b1/0x1e0\n[43929.458196] ? handle_bug+0x3c/0x70\n[43929.458200] ? exc_invalid_op+0x17/0x40\n[43929.458211] ? nft_setelem_data_deactivate+0xd7/0xf0 [nf_tables]\n[43929.458271] ? nft_setelem_data_deactivate+0xe4/0xf0 [nf_tables]\n[43929.458332] nft_mapelem_deactivate+0x24/0x30 [nf_tables]\n[43929.458392] nft_rhash_walk+0xdd/0x180 [nf_tables]\n[43929.458453] ? __pfx_nft_rhash_walk+0x10/0x10 [nf_tables]\n[43929.458512] ? rb_insert_color+0x2e/0x280\n[43929.458520] nft_map_deactivate+0xdc/0x1e0 [nf_tables]\n[43929.458582] ? __pfx_nft_map_deactivate+0x10/0x10 [nf_tables]\n[43929.458642] ? __pfx_nft_mapelem_deactivate+0x10/0x10 [nf_tables]\n[43929.458701] ? __rcu_read_unlock+0x46/0x70\n[43929.458709] nft_delset+0xff/0x110 [nf_tables]\n[43929.458769] nft_flush_table+0x16f/0x460 [nf_tables]\n[43929.458830] nf_tables_deltable+0x501/0x580 [nf_tables]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27012",
"url": "https://www.suse.com/security/cve/CVE-2024-27012"
},
{
"category": "external",
"summary": "SUSE Bug 1223804 for CVE-2024-27012",
"url": "https://bugzilla.suse.com/1223804"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-27012"
},
{
"cve": "CVE-2024-27015",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27015"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: flowtable: incorrect pppoe tuple\n\npppoe traffic reaching ingress path does not match the flowtable entry\nbecause the pppoe header is expected to be at the network header offset.\nThis bug causes a mismatch in the flow table lookup, so pppoe packets\nenter the classical forwarding path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27015",
"url": "https://www.suse.com/security/cve/CVE-2024-27015"
},
{
"category": "external",
"summary": "SUSE Bug 1223806 for CVE-2024-27015",
"url": "https://bugzilla.suse.com/1223806"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-27015"
},
{
"cve": "CVE-2024-27016",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27016"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: flowtable: validate pppoe header\n\nEnsure there is sufficient room to access the protocol field of the\nPPPoe header. Validate it once before the flowtable lookup, then use a\nhelper function to access protocol field.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27016",
"url": "https://www.suse.com/security/cve/CVE-2024-27016"
},
{
"category": "external",
"summary": "SUSE Bug 1223807 for CVE-2024-27016",
"url": "https://bugzilla.suse.com/1223807"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-27016"
},
{
"cve": "CVE-2024-27019",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27019"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: Fix potential data-race in __nft_obj_type_get()\n\nnft_unregister_obj() can concurrent with __nft_obj_type_get(),\nand there is not any protection when iterate over nf_tables_objects\nlist in __nft_obj_type_get(). Therefore, there is potential data-race\nof nf_tables_objects list entry.\n\nUse list_for_each_entry_rcu() to iterate over nf_tables_objects\nlist in __nft_obj_type_get(), and use rcu_read_lock() in the caller\nnft_obj_type_get() to protect the entire type query process.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27019",
"url": "https://www.suse.com/security/cve/CVE-2024-27019"
},
{
"category": "external",
"summary": "SUSE Bug 1223813 for CVE-2024-27019",
"url": "https://bugzilla.suse.com/1223813"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-27019"
},
{
"cve": "CVE-2024-27020",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27020"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: Fix potential data-race in __nft_expr_type_get()\n\nnft_unregister_expr() can concurrent with __nft_expr_type_get(),\nand there is not any protection when iterate over nf_tables_expressions\nlist in __nft_expr_type_get(). Therefore, there is potential data-race\nof nf_tables_expressions list entry.\n\nUse list_for_each_entry_rcu() to iterate over nf_tables_expressions\nlist in __nft_expr_type_get(), and use rcu_read_lock() in the caller\nnft_expr_type_get() to protect the entire type query process.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27020",
"url": "https://www.suse.com/security/cve/CVE-2024-27020"
},
{
"category": "external",
"summary": "SUSE Bug 1223815 for CVE-2024-27020",
"url": "https://bugzilla.suse.com/1223815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-27020"
},
{
"cve": "CVE-2024-27025",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27025"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnbd: null check for nla_nest_start\n\nnla_nest_start() may fail and return NULL. Insert a check and set errno\nbased on other call sites within the same source code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27025",
"url": "https://www.suse.com/security/cve/CVE-2024-27025"
},
{
"category": "external",
"summary": "SUSE Bug 1223778 for CVE-2024-27025",
"url": "https://bugzilla.suse.com/1223778"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-27025"
},
{
"cve": "CVE-2024-27064",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27064"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: Fix a memory leak in nf_tables_updchain\n\nIf nft_netdev_register_hooks() fails, the memory associated with\nnft_stats is not freed, causing a memory leak.\n\nThis patch fixes it by moving nft_stats_alloc() down after\nnft_netdev_register_hooks() succeeds.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27064",
"url": "https://www.suse.com/security/cve/CVE-2024-27064"
},
{
"category": "external",
"summary": "SUSE Bug 1223740 for CVE-2024-27064",
"url": "https://bugzilla.suse.com/1223740"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-27064"
},
{
"cve": "CVE-2024-27065",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27065"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: do not compare internal table flags on updates\n\nRestore skipping transaction if table update does not modify flags.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27065",
"url": "https://www.suse.com/security/cve/CVE-2024-27065"
},
{
"category": "external",
"summary": "SUSE Bug 1223836 for CVE-2024-27065",
"url": "https://bugzilla.suse.com/1223836"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-27065"
},
{
"cve": "CVE-2024-27402",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27402"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nphonet/pep: fix racy skb_queue_empty() use\n\nThe receive queues are protected by their respective spin-lock, not\nthe socket lock. This could lead to skb_peek() unexpectedly\nreturning NULL or a pointer to an already dequeued socket buffer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27402",
"url": "https://www.suse.com/security/cve/CVE-2024-27402"
},
{
"category": "external",
"summary": "SUSE Bug 1224414 for CVE-2024-27402",
"url": "https://bugzilla.suse.com/1224414"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-27402"
},
{
"cve": "CVE-2024-27404",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27404"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: fix data races on remote_id\n\nSimilar to the previous patch, address the data race on\nremote_id, adding the suitable ONCE annotations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27404",
"url": "https://www.suse.com/security/cve/CVE-2024-27404"
},
{
"category": "external",
"summary": "SUSE Bug 1224422 for CVE-2024-27404",
"url": "https://bugzilla.suse.com/1224422"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-27404"
},
{
"cve": "CVE-2024-27414",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27414"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrtnetlink: fix error logic of IFLA_BRIDGE_FLAGS writing back\n\nIn the commit d73ef2d69c0d (\"rtnetlink: let rtnl_bridge_setlink checks\nIFLA_BRIDGE_MODE length\"), an adjustment was made to the old loop logic\nin the function `rtnl_bridge_setlink` to enable the loop to also check\nthe length of the IFLA_BRIDGE_MODE attribute. However, this adjustment\nremoved the `break` statement and led to an error logic of the flags\nwriting back at the end of this function.\n\nif (have_flags)\n memcpy(nla_data(attr), \u0026flags, sizeof(flags));\n // attr should point to IFLA_BRIDGE_FLAGS NLA !!!\n\nBefore the mentioned commit, the `attr` is granted to be IFLA_BRIDGE_FLAGS.\nHowever, this is not necessarily true fow now as the updated loop will let\nthe attr point to the last NLA, even an invalid NLA which could cause\noverflow writes.\n\nThis patch introduces a new variable `br_flag` to save the NLA pointer\nthat points to IFLA_BRIDGE_FLAGS and uses it to resolve the mentioned\nerror logic.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27414",
"url": "https://www.suse.com/security/cve/CVE-2024-27414"
},
{
"category": "external",
"summary": "SUSE Bug 1224439 for CVE-2024-27414",
"url": "https://bugzilla.suse.com/1224439"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-27414"
},
{
"cve": "CVE-2024-27419",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27419"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetrom: Fix data-races around sysctl_net_busy_read\n\nWe need to protect the reader reading the sysctl value because the\nvalue can be changed concurrently.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27419",
"url": "https://www.suse.com/security/cve/CVE-2024-27419"
},
{
"category": "external",
"summary": "SUSE Bug 1224759 for CVE-2024-27419",
"url": "https://bugzilla.suse.com/1224759"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "low"
}
],
"title": "CVE-2024-27419"
},
{
"cve": "CVE-2024-33619",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-33619"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nefi: libstub: only free priv.runtime_map when allocated\n\npriv.runtime_map is only allocated when efi_novamap is not set.\nOtherwise, it is an uninitialized value. In the error path, it is freed\nunconditionally. Avoid passing an uninitialized value to free_pool.\nFree priv.runtime_map only when it was allocated.\n\nThis bug was discovered and resolved using Coverity Static Analysis\nSecurity Testing (SAST) by Synopsys, Inc.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-33619",
"url": "https://www.suse.com/security/cve/CVE-2024-33619"
},
{
"category": "external",
"summary": "SUSE Bug 1226768 for CVE-2024-33619",
"url": "https://bugzilla.suse.com/1226768"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-33619"
},
{
"cve": "CVE-2024-34777",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-34777"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndma-mapping: benchmark: fix node id validation\n\nWhile validating node ids in map_benchmark_ioctl(), node_possible() may\nbe provided with invalid argument outside of [0,MAX_NUMNODES-1] range\nleading to:\n\nBUG: KASAN: wild-memory-access in map_benchmark_ioctl (kernel/dma/map_benchmark.c:214)\nRead of size 8 at addr 1fffffff8ccb6398 by task dma_map_benchma/971\nCPU: 7 PID: 971 Comm: dma_map_benchma Not tainted 6.9.0-rc6 #37\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996)\nCall Trace:\n \u003cTASK\u003e\ndump_stack_lvl (lib/dump_stack.c:117)\nkasan_report (mm/kasan/report.c:603)\nkasan_check_range (mm/kasan/generic.c:189)\nvariable_test_bit (arch/x86/include/asm/bitops.h:227) [inline]\narch_test_bit (arch/x86/include/asm/bitops.h:239) [inline]\n_test_bit at (include/asm-generic/bitops/instrumented-non-atomic.h:142) [inline]\nnode_state (include/linux/nodemask.h:423) [inline]\nmap_benchmark_ioctl (kernel/dma/map_benchmark.c:214)\nfull_proxy_unlocked_ioctl (fs/debugfs/file.c:333)\n__x64_sys_ioctl (fs/ioctl.c:890)\ndo_syscall_64 (arch/x86/entry/common.c:83)\nentry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)\n\nCompare node ids with sane bounds first. NUMA_NO_NODE is considered a\nspecial valid case meaning that benchmarking kthreads won\u0027t be bound to a\ncpuset of a given node.\n\nFound by Linux Verification Center (linuxtesting.org).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-34777",
"url": "https://www.suse.com/security/cve/CVE-2024-34777"
},
{
"category": "external",
"summary": "SUSE Bug 1226796 for CVE-2024-34777",
"url": "https://bugzilla.suse.com/1226796"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-34777"
},
{
"cve": "CVE-2024-35247",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35247"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfpga: region: add owner module and take its refcount\n\nThe current implementation of the fpga region assumes that the low-level\nmodule registers a driver for the parent device and uses its owner pointer\nto take the module\u0027s refcount. This approach is problematic since it can\nlead to a null pointer dereference while attempting to get the region\nduring programming if the parent device does not have a driver.\n\nTo address this problem, add a module owner pointer to the fpga_region\nstruct and use it to take the module\u0027s refcount. Modify the functions for\nregistering a region to take an additional owner module parameter and\nrename them to avoid conflicts. Use the old function names for helper\nmacros that automatically set the module that registers the region as the\nowner. This ensures compatibility with existing low-level control modules\nand reduces the chances of registering a region without setting the owner.\n\nAlso, update the documentation to keep it consistent with the new interface\nfor registering an fpga region.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35247",
"url": "https://www.suse.com/security/cve/CVE-2024-35247"
},
{
"category": "external",
"summary": "SUSE Bug 1226948 for CVE-2024-35247",
"url": "https://bugzilla.suse.com/1226948"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-35247"
},
{
"cve": "CVE-2024-35805",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35805"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm snapshot: fix lockup in dm_exception_table_exit\n\nThere was reported lockup when we exit a snapshot with many exceptions.\nFix this by adding \"cond_resched\" to the loop that frees the exceptions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35805",
"url": "https://www.suse.com/security/cve/CVE-2024-35805"
},
{
"category": "external",
"summary": "SUSE Bug 1224743 for CVE-2024-35805",
"url": "https://bugzilla.suse.com/1224743"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-35805"
},
{
"cve": "CVE-2024-35807",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35807"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix corruption during on-line resize\n\nWe observed a corruption during on-line resize of a file system that is\nlarger than 16 TiB with 4k block size. With having more then 2^32 blocks\nresize_inode is turned off by default by mke2fs. The issue can be\nreproduced on a smaller file system for convenience by explicitly\nturning off resize_inode. An on-line resize across an 8 GiB boundary (the\nsize of a meta block group in this setup) then leads to a corruption:\n\n dev=/dev/\u003csome_dev\u003e # should be \u003e= 16 GiB\n mkdir -p /corruption\n /sbin/mke2fs -t ext4 -b 4096 -O ^resize_inode $dev $((2 * 2**21 - 2**15))\n mount -t ext4 $dev /corruption\n\n dd if=/dev/zero bs=4096 of=/corruption/test count=$((2*2**21 - 4*2**15))\n sha1sum /corruption/test\n # 79d2658b39dcfd77274e435b0934028adafaab11 /corruption/test\n\n /sbin/resize2fs $dev $((2*2**21))\n # drop page cache to force reload the block from disk\n echo 1 \u003e /proc/sys/vm/drop_caches\n\n sha1sum /corruption/test\n # 3c2abc63cbf1a94c9e6977e0fbd72cd832c4d5c3 /corruption/test\n\n2^21 = 2^15*2^6 equals 8 GiB whereof 2^15 is the number of blocks per\nblock group and 2^6 are the number of block groups that make a meta\nblock group.\n\nThe last checksum might be different depending on how the file is laid\nout across the physical blocks. The actual corruption occurs at physical\nblock 63*2^15 = 2064384 which would be the location of the backup of the\nmeta block group\u0027s block descriptor. During the on-line resize the file\nsystem will be converted to meta_bg starting at s_first_meta_bg which is\n2 in the example - meaning all block groups after 16 GiB. However, in\next4_flex_group_add we might add block groups that are not part of the\nfirst meta block group yet. In the reproducer we achieved this by\nsubstracting the size of a whole block group from the point where the\nmeta block group would start. This must be considered when updating the\nbackup block group descriptors to follow the non-meta_bg layout. The fix\nis to add a test whether the group to add is already part of the meta\nblock group or not.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35807",
"url": "https://www.suse.com/security/cve/CVE-2024-35807"
},
{
"category": "external",
"summary": "SUSE Bug 1224735 for CVE-2024-35807",
"url": "https://bugzilla.suse.com/1224735"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-35807"
},
{
"cve": "CVE-2024-35827",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35827"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/net: fix overflow check in io_recvmsg_mshot_prep()\n\nThe \"controllen\" variable is type size_t (unsigned long). Casting it\nto int could lead to an integer underflow.\n\nThe check_add_overflow() function considers the type of the destination\nwhich is type int. If we add two positive values and the result cannot\nfit in an integer then that\u0027s counted as an overflow.\n\nHowever, if we cast \"controllen\" to an int and it turns negative, then\nnegative values *can* fit into an int type so there is no overflow.\n\nGood: 100 + (unsigned long)-4 = 96 \u003c-- overflow\n Bad: 100 + (int)-4 = 96 \u003c-- no overflow\n\nI deleted the cast of the sizeof() as well. That\u0027s not a bug but the\ncast is unnecessary.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35827",
"url": "https://www.suse.com/security/cve/CVE-2024-35827"
},
{
"category": "external",
"summary": "SUSE Bug 1224606 for CVE-2024-35827",
"url": "https://bugzilla.suse.com/1224606"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-35827"
},
{
"cve": "CVE-2024-35831",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35831"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring: Fix release of pinned pages when __io_uaddr_map fails\n\nLooking at the error path of __io_uaddr_map, if we fail after pinning\nthe pages for any reasons, ret will be set to -EINVAL and the error\nhandler won\u0027t properly release the pinned pages.\n\nI didn\u0027t manage to trigger it without forcing a failure, but it can\nhappen in real life when memory is heavily fragmented.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35831",
"url": "https://www.suse.com/security/cve/CVE-2024-35831"
},
{
"category": "external",
"summary": "SUSE Bug 1224698 for CVE-2024-35831",
"url": "https://bugzilla.suse.com/1224698"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-35831"
},
{
"cve": "CVE-2024-35843",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35843"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommu/vt-d: Use device rbtree in iopf reporting path\n\nThe existing I/O page fault handler currently locates the PCI device by\ncalling pci_get_domain_bus_and_slot(). This function searches the list\nof all PCI devices until the desired device is found. To improve lookup\nefficiency, replace it with device_rbtree_find() to search the device\nwithin the probed device rbtree.\n\nThe I/O page fault is initiated by the device, which does not have any\nsynchronization mechanism with the software to ensure that the device\nstays in the probed device tree. Theoretically, a device could be released\nby the IOMMU subsystem after device_rbtree_find() and before\niopf_get_dev_fault_param(), which would cause a use-after-free problem.\n\nAdd a mutex to synchronize the I/O page fault reporting path and the IOMMU\nrelease device path. This lock doesn\u0027t introduce any performance overhead,\nas the conflict between I/O page fault reporting and device releasing is\nvery rare.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35843",
"url": "https://www.suse.com/security/cve/CVE-2024-35843"
},
{
"category": "external",
"summary": "SUSE Bug 1224751 for CVE-2024-35843",
"url": "https://bugzilla.suse.com/1224751"
},
{
"category": "external",
"summary": "SUSE Bug 1227368 for CVE-2024-35843",
"url": "https://bugzilla.suse.com/1227368"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-35843"
},
{
"cve": "CVE-2024-35848",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35848"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\neeprom: at24: fix memory corruption race condition\n\nIf the eeprom is not accessible, an nvmem device will be registered, the\nread will fail, and the device will be torn down. If another driver\naccesses the nvmem device after the teardown, it will reference\ninvalid memory.\n\nMove the failure point before registering the nvmem device.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35848",
"url": "https://www.suse.com/security/cve/CVE-2024-35848"
},
{
"category": "external",
"summary": "SUSE Bug 1224612 for CVE-2024-35848",
"url": "https://bugzilla.suse.com/1224612"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-35848"
},
{
"cve": "CVE-2024-35853",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35853"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlxsw: spectrum_acl_tcam: Fix memory leak during rehash\n\nThe rehash delayed work migrates filters from one region to another.\nThis is done by iterating over all chunks (all the filters with the same\npriority) in the region and in each chunk iterating over all the\nfilters.\n\nIf the migration fails, the code tries to migrate the filters back to\nthe old region. However, the rollback itself can also fail in which case\nanother migration will be erroneously performed. Besides the fact that\nthis ping pong is not a very good idea, it also creates a problem.\n\nEach virtual chunk references two chunks: The currently used one\n(\u0027vchunk-\u003echunk\u0027) and a backup (\u0027vchunk-\u003echunk2\u0027). During migration the\nfirst holds the chunk we want to migrate filters to and the second holds\nthe chunk we are migrating filters from.\n\nThe code currently assumes - but does not verify - that the backup chunk\ndoes not exist (NULL) if the currently used chunk does not reference the\ntarget region. This assumption breaks when we are trying to rollback a\nrollback, resulting in the backup chunk being overwritten and leaked\n[1].\n\nFix by not rolling back a failed rollback and add a warning to avoid\nfuture cases.\n\n[1]\nWARNING: CPU: 5 PID: 1063 at lib/parman.c:291 parman_destroy+0x17/0x20\nModules linked in:\nCPU: 5 PID: 1063 Comm: kworker/5:11 Tainted: G W 6.9.0-rc2-custom-00784-gc6a05c468a0b #14\nHardware name: Mellanox Technologies Ltd. MSN3700/VMOD0005, BIOS 5.11 01/06/2019\nWorkqueue: mlxsw_core mlxsw_sp_acl_tcam_vregion_rehash_work\nRIP: 0010:parman_destroy+0x17/0x20\n[...]\nCall Trace:\n \u003cTASK\u003e\n mlxsw_sp_acl_atcam_region_fini+0x19/0x60\n mlxsw_sp_acl_tcam_region_destroy+0x49/0xf0\n mlxsw_sp_acl_tcam_vregion_rehash_work+0x1f1/0x470\n process_one_work+0x151/0x370\n worker_thread+0x2cb/0x3e0\n kthread+0xd0/0x100\n ret_from_fork+0x34/0x50\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35853",
"url": "https://www.suse.com/security/cve/CVE-2024-35853"
},
{
"category": "external",
"summary": "SUSE Bug 1224604 for CVE-2024-35853",
"url": "https://bugzilla.suse.com/1224604"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-35853"
},
{
"cve": "CVE-2024-35854",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35854"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlxsw: spectrum_acl_tcam: Fix possible use-after-free during rehash\n\nThe rehash delayed work migrates filters from one region to another\naccording to the number of available credits.\n\nThe migrated from region is destroyed at the end of the work if the\nnumber of credits is non-negative as the assumption is that this is\nindicative of migration being complete. This assumption is incorrect as\na non-negative number of credits can also be the result of a failed\nmigration.\n\nThe destruction of a region that still has filters referencing it can\nresult in a use-after-free [1].\n\nFix by not destroying the region if migration failed.\n\n[1]\nBUG: KASAN: slab-use-after-free in mlxsw_sp_acl_ctcam_region_entry_remove+0x21d/0x230\nRead of size 8 at addr ffff8881735319e8 by task kworker/0:31/3858\n\nCPU: 0 PID: 3858 Comm: kworker/0:31 Tainted: G W 6.9.0-rc2-custom-00782-gf2275c2157d8 #5\nHardware name: Mellanox Technologies Ltd. MSN3700/VMOD0005, BIOS 5.11 01/06/2019\nWorkqueue: mlxsw_core mlxsw_sp_acl_tcam_vregion_rehash_work\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0xc6/0x120\n print_report+0xce/0x670\n kasan_report+0xd7/0x110\n mlxsw_sp_acl_ctcam_region_entry_remove+0x21d/0x230\n mlxsw_sp_acl_ctcam_entry_del+0x2e/0x70\n mlxsw_sp_acl_atcam_entry_del+0x81/0x210\n mlxsw_sp_acl_tcam_vchunk_migrate_all+0x3cd/0xb50\n mlxsw_sp_acl_tcam_vregion_rehash_work+0x157/0x1300\n process_one_work+0x8eb/0x19b0\n worker_thread+0x6c9/0xf70\n kthread+0x2c9/0x3b0\n ret_from_fork+0x4d/0x80\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nAllocated by task 174:\n kasan_save_stack+0x33/0x60\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x8f/0xa0\n __kmalloc+0x19c/0x360\n mlxsw_sp_acl_tcam_region_create+0xdf/0x9c0\n mlxsw_sp_acl_tcam_vregion_rehash_work+0x954/0x1300\n process_one_work+0x8eb/0x19b0\n worker_thread+0x6c9/0xf70\n kthread+0x2c9/0x3b0\n ret_from_fork+0x4d/0x80\n ret_from_fork_asm+0x1a/0x30\n\nFreed by task 7:\n kasan_save_stack+0x33/0x60\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3b/0x60\n poison_slab_object+0x102/0x170\n __kasan_slab_free+0x14/0x30\n kfree+0xc1/0x290\n mlxsw_sp_acl_tcam_region_destroy+0x272/0x310\n mlxsw_sp_acl_tcam_vregion_rehash_work+0x731/0x1300\n process_one_work+0x8eb/0x19b0\n worker_thread+0x6c9/0xf70\n kthread+0x2c9/0x3b0\n ret_from_fork+0x4d/0x80\n ret_from_fork_asm+0x1a/0x30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35854",
"url": "https://www.suse.com/security/cve/CVE-2024-35854"
},
{
"category": "external",
"summary": "SUSE Bug 1224636 for CVE-2024-35854",
"url": "https://bugzilla.suse.com/1224636"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-35854"
},
{
"cve": "CVE-2024-35857",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35857"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nicmp: prevent possible NULL dereferences from icmp_build_probe()\n\nFirst problem is a double call to __in_dev_get_rcu(), because\nthe second one could return NULL.\n\nif (__in_dev_get_rcu(dev) \u0026\u0026 __in_dev_get_rcu(dev)-\u003eifa_list)\n\nSecond problem is a read from dev-\u003eip6_ptr with no NULL check:\n\nif (!list_empty(\u0026rcu_dereference(dev-\u003eip6_ptr)-\u003eaddr_list))\n\nUse the correct RCU API to fix these.\n\nv2: add missing include \u003cnet/addrconf.h\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35857",
"url": "https://www.suse.com/security/cve/CVE-2024-35857"
},
{
"category": "external",
"summary": "SUSE Bug 1224619 for CVE-2024-35857",
"url": "https://bugzilla.suse.com/1224619"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-35857"
},
{
"cve": "CVE-2024-35880",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35880"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/kbuf: hold io_buffer_list reference over mmap\n\nIf we look up the kbuf, ensure that it doesn\u0027t get unregistered until\nafter we\u0027re done with it. Since we\u0027re inside mmap, we cannot safely use\nthe io_uring lock. Rely on the fact that we can lookup the buffer list\nunder RCU now and grab a reference to it, preventing it from being\nunregistered until we\u0027re done with it. The lookup returns the\nio_buffer_list directly with it referenced.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35880",
"url": "https://www.suse.com/security/cve/CVE-2024-35880"
},
{
"category": "external",
"summary": "SUSE Bug 1224523 for CVE-2024-35880",
"url": "https://bugzilla.suse.com/1224523"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-35880"
},
{
"cve": "CVE-2024-35884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35884"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudp: do not accept non-tunnel GSO skbs landing in a tunnel\n\nWhen rx-udp-gro-forwarding is enabled UDP packets might be GROed when\nbeing forwarded. If such packets might land in a tunnel this can cause\nvarious issues and udp_gro_receive makes sure this isn\u0027t the case by\nlooking for a matching socket. This is performed in\nudp4/6_gro_lookup_skb but only in the current netns. This is an issue\nwith tunneled packets when the endpoint is in another netns. In such\ncases the packets will be GROed at the UDP level, which leads to various\nissues later on. The same thing can happen with rx-gro-list.\n\nWe saw this with geneve packets being GROed at the UDP level. In such\ncase gso_size is set; later the packet goes through the geneve rx path,\nthe geneve header is pulled, the offset are adjusted and frag_list skbs\nare not adjusted with regard to geneve. When those skbs hit\nskb_fragment, it will misbehave. Different outcomes are possible\ndepending on what the GROed skbs look like; from corrupted packets to\nkernel crashes.\n\nOne example is a BUG_ON[1] triggered in skb_segment while processing the\nfrag_list. Because gso_size is wrong (geneve header was pulled)\nskb_segment thinks there is \"geneve header size\" of data in frag_list,\nalthough it\u0027s in fact the next packet. The BUG_ON itself has nothing to\ndo with the issue. This is only one of the potential issues.\n\nLooking up for a matching socket in udp_gro_receive is fragile: the\nlookup could be extended to all netns (not speaking about performances)\nbut nothing prevents those packets from being modified in between and we\ncould still not find a matching socket. It\u0027s OK to keep the current\nlogic there as it should cover most cases but we also need to make sure\nwe handle tunnel packets being GROed too early.\n\nThis is done by extending the checks in udp_unexpected_gso: GSO packets\nlacking the SKB_GSO_UDP_TUNNEL/_CSUM bits and landing in a tunnel must\nbe segmented.\n\n[1] kernel BUG at net/core/skbuff.c:4408!\n RIP: 0010:skb_segment+0xd2a/0xf70\n __udp_gso_segment+0xaa/0x560",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35884",
"url": "https://www.suse.com/security/cve/CVE-2024-35884"
},
{
"category": "external",
"summary": "SUSE Bug 1224520 for CVE-2024-35884",
"url": "https://bugzilla.suse.com/1224520"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-35884"
},
{
"cve": "CVE-2024-35886",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35886"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: Fix infinite recursion in fib6_dump_done().\n\nsyzkaller reported infinite recursive calls of fib6_dump_done() during\nnetlink socket destruction. [1]\n\nFrom the log, syzkaller sent an AF_UNSPEC RTM_GETROUTE message, and then\nthe response was generated. The following recvmmsg() resumed the dump\nfor IPv6, but the first call of inet6_dump_fib() failed at kzalloc() due\nto the fault injection. [0]\n\n 12:01:34 executing program 3:\n r0 = socket$nl_route(0x10, 0x3, 0x0)\n sendmsg$nl_route(r0, ... snip ...)\n recvmmsg(r0, ... snip ...) (fail_nth: 8)\n\nHere, fib6_dump_done() was set to nlk_sk(sk)-\u003ecb.done, and the next call\nof inet6_dump_fib() set it to nlk_sk(sk)-\u003ecb.args[3]. syzkaller stopped\nreceiving the response halfway through, and finally netlink_sock_destruct()\ncalled nlk_sk(sk)-\u003ecb.done().\n\nfib6_dump_done() calls fib6_dump_end() and nlk_sk(sk)-\u003ecb.done() if it\nis still not NULL. fib6_dump_end() rewrites nlk_sk(sk)-\u003ecb.done() by\nnlk_sk(sk)-\u003ecb.args[3], but it has the same function, not NULL, calling\nitself recursively and hitting the stack guard page.\n\nTo avoid the issue, let\u0027s set the destructor after kzalloc().\n\n[0]:\nFAULT_INJECTION: forcing a failure.\nname failslab, interval 1, probability 0, space 0, times 0\nCPU: 1 PID: 432110 Comm: syz-executor.3 Not tainted 6.8.0-12821-g537c2e91d354-dirty #11\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl (lib/dump_stack.c:117)\n should_fail_ex (lib/fault-inject.c:52 lib/fault-inject.c:153)\n should_failslab (mm/slub.c:3733)\n kmalloc_trace (mm/slub.c:3748 mm/slub.c:3827 mm/slub.c:3992)\n inet6_dump_fib (./include/linux/slab.h:628 ./include/linux/slab.h:749 net/ipv6/ip6_fib.c:662)\n rtnl_dump_all (net/core/rtnetlink.c:4029)\n netlink_dump (net/netlink/af_netlink.c:2269)\n netlink_recvmsg (net/netlink/af_netlink.c:1988)\n ____sys_recvmsg (net/socket.c:1046 net/socket.c:2801)\n ___sys_recvmsg (net/socket.c:2846)\n do_recvmmsg (net/socket.c:2943)\n __x64_sys_recvmmsg (net/socket.c:3041 net/socket.c:3034 net/socket.c:3034)\n\n[1]:\nBUG: TASK stack guard page was hit at 00000000f2fa9af1 (stack is 00000000b7912430..000000009a436beb)\nstack guard page: 0000 [#1] PREEMPT SMP KASAN\nCPU: 1 PID: 223719 Comm: kworker/1:3 Not tainted 6.8.0-12821-g537c2e91d354-dirty #11\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\nWorkqueue: events netlink_sock_destruct_work\nRIP: 0010:fib6_dump_done (net/ipv6/ip6_fib.c:570)\nCode: 3c 24 e8 f3 e9 51 fd e9 28 fd ff ff 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 f3 0f 1e fa 41 57 41 56 41 55 41 54 55 48 89 fd \u003c53\u003e 48 8d 5d 60 e8 b6 4d 07 fd 48 89 da 48 b8 00 00 00 00 00 fc ff\nRSP: 0018:ffffc9000d980000 EFLAGS: 00010293\nRAX: 0000000000000000 RBX: ffffffff84405990 RCX: ffffffff844059d3\nRDX: ffff8881028e0000 RSI: ffffffff84405ac2 RDI: ffff88810c02f358\nRBP: ffff88810c02f358 R08: 0000000000000007 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000224 R12: 0000000000000000\nR13: ffff888007c82c78 R14: ffff888007c82c68 R15: ffff888007c82c68\nFS: 0000000000000000(0000) GS:ffff88811b100000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: ffffc9000d97fff8 CR3: 0000000102309002 CR4: 0000000000770ef0\nPKRU: 55555554\nCall Trace:\n \u003c#DF\u003e\n \u003c/#DF\u003e\n \u003cTASK\u003e\n fib6_dump_done (net/ipv6/ip6_fib.c:572 (discriminator 1))\n fib6_dump_done (net/ipv6/ip6_fib.c:572 (discriminator 1))\n ...\n fib6_dump_done (net/ipv6/ip6_fib.c:572 (discriminator 1))\n fib6_dump_done (net/ipv6/ip6_fib.c:572 (discriminator 1))\n netlink_sock_destruct (net/netlink/af_netlink.c:401)\n __sk_destruct (net/core/sock.c:2177 (discriminator 2))\n sk_destruct (net/core/sock.c:2224)\n __sk_free (net/core/sock.c:2235)\n sk_free (net/core/sock.c:2246)\n process_one_work (kernel/workqueue.c:3259)\n worker_thread (kernel/workqueue.c:3329 kernel/workqueue.\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35886",
"url": "https://www.suse.com/security/cve/CVE-2024-35886"
},
{
"category": "external",
"summary": "SUSE Bug 1224670 for CVE-2024-35886",
"url": "https://bugzilla.suse.com/1224670"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-35886"
},
{
"cve": "CVE-2024-35890",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35890"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngro: fix ownership transfer\n\nIf packets are GROed with fraglist they might be segmented later on and\ncontinue their journey in the stack. In skb_segment_list those skbs can\nbe reused as-is. This is an issue as their destructor was removed in\nskb_gro_receive_list but not the reference to their socket, and then\nthey can\u0027t be orphaned. Fix this by also removing the reference to the\nsocket.\n\nFor example this could be observed,\n\n kernel BUG at include/linux/skbuff.h:3131! (skb_orphan)\n RIP: 0010:ip6_rcv_core+0x11bc/0x19a0\n Call Trace:\n ipv6_list_rcv+0x250/0x3f0\n __netif_receive_skb_list_core+0x49d/0x8f0\n netif_receive_skb_list_internal+0x634/0xd40\n napi_complete_done+0x1d2/0x7d0\n gro_cell_poll+0x118/0x1f0\n\nA similar construction is found in skb_gro_receive, apply the same\nchange there.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35890",
"url": "https://www.suse.com/security/cve/CVE-2024-35890"
},
{
"category": "external",
"summary": "SUSE Bug 1224516 for CVE-2024-35890",
"url": "https://bugzilla.suse.com/1224516"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-35890"
},
{
"cve": "CVE-2024-35892",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35892"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: fix lockdep splat in qdisc_tree_reduce_backlog()\n\nqdisc_tree_reduce_backlog() is called with the qdisc lock held,\nnot RTNL.\n\nWe must use qdisc_lookup_rcu() instead of qdisc_lookup()\n\nsyzbot reported:\n\nWARNING: suspicious RCU usage\n6.1.74-syzkaller #0 Not tainted\n-----------------------------\nnet/sched/sch_api.c:305 suspicious rcu_dereference_protected() usage!\n\nother info that might help us debug this:\n\nrcu_scheduler_active = 2, debug_locks = 1\n3 locks held by udevd/1142:\n #0: ffffffff87c729a0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire include/linux/rcupdate.h:306 [inline]\n #0: ffffffff87c729a0 (rcu_read_lock){....}-{1:2}, at: rcu_read_lock include/linux/rcupdate.h:747 [inline]\n #0: ffffffff87c729a0 (rcu_read_lock){....}-{1:2}, at: net_tx_action+0x64a/0x970 net/core/dev.c:5282\n #1: ffff888171861108 (\u0026sch-\u003eq.lock){+.-.}-{2:2}, at: spin_lock include/linux/spinlock.h:350 [inline]\n #1: ffff888171861108 (\u0026sch-\u003eq.lock){+.-.}-{2:2}, at: net_tx_action+0x754/0x970 net/core/dev.c:5297\n #2: ffffffff87c729a0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire include/linux/rcupdate.h:306 [inline]\n #2: ffffffff87c729a0 (rcu_read_lock){....}-{1:2}, at: rcu_read_lock include/linux/rcupdate.h:747 [inline]\n #2: ffffffff87c729a0 (rcu_read_lock){....}-{1:2}, at: qdisc_tree_reduce_backlog+0x84/0x580 net/sched/sch_api.c:792\n\nstack backtrace:\nCPU: 1 PID: 1142 Comm: udevd Not tainted 6.1.74-syzkaller #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024\nCall Trace:\n \u003cTASK\u003e\n [\u003cffffffff85b85f14\u003e] __dump_stack lib/dump_stack.c:88 [inline]\n [\u003cffffffff85b85f14\u003e] dump_stack_lvl+0x1b1/0x28f lib/dump_stack.c:106\n [\u003cffffffff85b86007\u003e] dump_stack+0x15/0x1e lib/dump_stack.c:113\n [\u003cffffffff81802299\u003e] lockdep_rcu_suspicious+0x1b9/0x260 kernel/locking/lockdep.c:6592\n [\u003cffffffff84f0054c\u003e] qdisc_lookup+0xac/0x6f0 net/sched/sch_api.c:305\n [\u003cffffffff84f037c3\u003e] qdisc_tree_reduce_backlog+0x243/0x580 net/sched/sch_api.c:811\n [\u003cffffffff84f5b78c\u003e] pfifo_tail_enqueue+0x32c/0x4b0 net/sched/sch_fifo.c:51\n [\u003cffffffff84fbcf63\u003e] qdisc_enqueue include/net/sch_generic.h:833 [inline]\n [\u003cffffffff84fbcf63\u003e] netem_dequeue+0xeb3/0x15d0 net/sched/sch_netem.c:723\n [\u003cffffffff84eecab9\u003e] dequeue_skb net/sched/sch_generic.c:292 [inline]\n [\u003cffffffff84eecab9\u003e] qdisc_restart net/sched/sch_generic.c:397 [inline]\n [\u003cffffffff84eecab9\u003e] __qdisc_run+0x249/0x1e60 net/sched/sch_generic.c:415\n [\u003cffffffff84d7aa96\u003e] qdisc_run+0xd6/0x260 include/net/pkt_sched.h:125\n [\u003cffffffff84d85d29\u003e] net_tx_action+0x7c9/0x970 net/core/dev.c:5313\n [\u003cffffffff85e002bd\u003e] __do_softirq+0x2bd/0x9bd kernel/softirq.c:616\n [\u003cffffffff81568bca\u003e] invoke_softirq kernel/softirq.c:447 [inline]\n [\u003cffffffff81568bca\u003e] __irq_exit_rcu+0xca/0x230 kernel/softirq.c:700\n [\u003cffffffff81568ae9\u003e] irq_exit_rcu+0x9/0x20 kernel/softirq.c:712\n [\u003cffffffff85b89f52\u003e] sysvec_apic_timer_interrupt+0x42/0x90 arch/x86/kernel/apic/apic.c:1107\n [\u003cffffffff85c00ccb\u003e] asm_sysvec_apic_timer_interrupt+0x1b/0x20 arch/x86/include/asm/idtentry.h:656",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35892",
"url": "https://www.suse.com/security/cve/CVE-2024-35892"
},
{
"category": "external",
"summary": "SUSE Bug 1224515 for CVE-2024-35892",
"url": "https://bugzilla.suse.com/1224515"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-35892"
},
{
"cve": "CVE-2024-35893",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35893"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: act_skbmod: prevent kernel-infoleak\n\nsyzbot found that tcf_skbmod_dump() was copying four bytes\nfrom kernel stack to user space [1].\n\nThe issue here is that \u0027struct tc_skbmod\u0027 has a four bytes hole.\n\nWe need to clear the structure before filling fields.\n\n[1]\nBUG: KMSAN: kernel-infoleak in instrument_copy_to_user include/linux/instrumented.h:114 [inline]\n BUG: KMSAN: kernel-infoleak in copy_to_user_iter lib/iov_iter.c:24 [inline]\n BUG: KMSAN: kernel-infoleak in iterate_ubuf include/linux/iov_iter.h:29 [inline]\n BUG: KMSAN: kernel-infoleak in iterate_and_advance2 include/linux/iov_iter.h:245 [inline]\n BUG: KMSAN: kernel-infoleak in iterate_and_advance include/linux/iov_iter.h:271 [inline]\n BUG: KMSAN: kernel-infoleak in _copy_to_iter+0x366/0x2520 lib/iov_iter.c:185\n instrument_copy_to_user include/linux/instrumented.h:114 [inline]\n copy_to_user_iter lib/iov_iter.c:24 [inline]\n iterate_ubuf include/linux/iov_iter.h:29 [inline]\n iterate_and_advance2 include/linux/iov_iter.h:245 [inline]\n iterate_and_advance include/linux/iov_iter.h:271 [inline]\n _copy_to_iter+0x366/0x2520 lib/iov_iter.c:185\n copy_to_iter include/linux/uio.h:196 [inline]\n simple_copy_to_iter net/core/datagram.c:532 [inline]\n __skb_datagram_iter+0x185/0x1000 net/core/datagram.c:420\n skb_copy_datagram_iter+0x5c/0x200 net/core/datagram.c:546\n skb_copy_datagram_msg include/linux/skbuff.h:4050 [inline]\n netlink_recvmsg+0x432/0x1610 net/netlink/af_netlink.c:1962\n sock_recvmsg_nosec net/socket.c:1046 [inline]\n sock_recvmsg+0x2c4/0x340 net/socket.c:1068\n __sys_recvfrom+0x35a/0x5f0 net/socket.c:2242\n __do_sys_recvfrom net/socket.c:2260 [inline]\n __se_sys_recvfrom net/socket.c:2256 [inline]\n __x64_sys_recvfrom+0x126/0x1d0 net/socket.c:2256\n do_syscall_64+0xd5/0x1f0\n entry_SYSCALL_64_after_hwframe+0x6d/0x75\n\nUninit was stored to memory at:\n pskb_expand_head+0x30f/0x19d0 net/core/skbuff.c:2253\n netlink_trim+0x2c2/0x330 net/netlink/af_netlink.c:1317\n netlink_unicast+0x9f/0x1260 net/netlink/af_netlink.c:1351\n nlmsg_unicast include/net/netlink.h:1144 [inline]\n nlmsg_notify+0x21d/0x2f0 net/netlink/af_netlink.c:2610\n rtnetlink_send+0x73/0x90 net/core/rtnetlink.c:741\n rtnetlink_maybe_send include/linux/rtnetlink.h:17 [inline]\n tcf_add_notify net/sched/act_api.c:2048 [inline]\n tcf_action_add net/sched/act_api.c:2071 [inline]\n tc_ctl_action+0x146e/0x19d0 net/sched/act_api.c:2119\n rtnetlink_rcv_msg+0x1737/0x1900 net/core/rtnetlink.c:6595\n netlink_rcv_skb+0x375/0x650 net/netlink/af_netlink.c:2559\n rtnetlink_rcv+0x34/0x40 net/core/rtnetlink.c:6613\n netlink_unicast_kernel net/netlink/af_netlink.c:1335 [inline]\n netlink_unicast+0xf4c/0x1260 net/netlink/af_netlink.c:1361\n netlink_sendmsg+0x10df/0x11f0 net/netlink/af_netlink.c:1905\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:745\n ____sys_sendmsg+0x877/0xb60 net/socket.c:2584\n ___sys_sendmsg+0x28d/0x3c0 net/socket.c:2638\n __sys_sendmsg net/socket.c:2667 [inline]\n __do_sys_sendmsg net/socket.c:2676 [inline]\n __se_sys_sendmsg net/socket.c:2674 [inline]\n __x64_sys_sendmsg+0x307/0x4a0 net/socket.c:2674\n do_syscall_64+0xd5/0x1f0\n entry_SYSCALL_64_after_hwframe+0x6d/0x75\n\nUninit was stored to memory at:\n __nla_put lib/nlattr.c:1041 [inline]\n nla_put+0x1c6/0x230 lib/nlattr.c:1099\n tcf_skbmod_dump+0x23f/0xc20 net/sched/act_skbmod.c:256\n tcf_action_dump_old net/sched/act_api.c:1191 [inline]\n tcf_action_dump_1+0x85e/0x970 net/sched/act_api.c:1227\n tcf_action_dump+0x1fd/0x460 net/sched/act_api.c:1251\n tca_get_fill+0x519/0x7a0 net/sched/act_api.c:1628\n tcf_add_notify_msg net/sched/act_api.c:2023 [inline]\n tcf_add_notify net/sched/act_api.c:2042 [inline]\n tcf_action_add net/sched/act_api.c:2071 [inline]\n tc_ctl_action+0x1365/0x19d0 net/sched/act_api.c:2119\n rtnetlink_rcv_msg+0x1737/0x1900 net/core/rtnetlink.c:6595\n netlink_rcv_skb+0x375/0x650 net/netlink/af_netli\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35893",
"url": "https://www.suse.com/security/cve/CVE-2024-35893"
},
{
"category": "external",
"summary": "SUSE Bug 1224512 for CVE-2024-35893",
"url": "https://bugzilla.suse.com/1224512"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-35893"
},
{
"cve": "CVE-2024-35896",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35896"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: validate user input for expected length\n\nI got multiple syzbot reports showing old bugs exposed\nby BPF after commit 20f2505fb436 (\"bpf: Try to avoid kzalloc\nin cgroup/{s,g}etsockopt\")\n\nsetsockopt() @optlen argument should be taken into account\nbefore copying data.\n\n BUG: KASAN: slab-out-of-bounds in copy_from_sockptr_offset include/linux/sockptr.h:49 [inline]\n BUG: KASAN: slab-out-of-bounds in copy_from_sockptr include/linux/sockptr.h:55 [inline]\n BUG: KASAN: slab-out-of-bounds in do_replace net/ipv4/netfilter/ip_tables.c:1111 [inline]\n BUG: KASAN: slab-out-of-bounds in do_ipt_set_ctl+0x902/0x3dd0 net/ipv4/netfilter/ip_tables.c:1627\nRead of size 96 at addr ffff88802cd73da0 by task syz-executor.4/7238\n\nCPU: 1 PID: 7238 Comm: syz-executor.4 Not tainted 6.9.0-rc2-next-20240403-syzkaller #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:114\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n kasan_check_range+0x282/0x290 mm/kasan/generic.c:189\n __asan_memcpy+0x29/0x70 mm/kasan/shadow.c:105\n copy_from_sockptr_offset include/linux/sockptr.h:49 [inline]\n copy_from_sockptr include/linux/sockptr.h:55 [inline]\n do_replace net/ipv4/netfilter/ip_tables.c:1111 [inline]\n do_ipt_set_ctl+0x902/0x3dd0 net/ipv4/netfilter/ip_tables.c:1627\n nf_setsockopt+0x295/0x2c0 net/netfilter/nf_sockopt.c:101\n do_sock_setsockopt+0x3af/0x720 net/socket.c:2311\n __sys_setsockopt+0x1ae/0x250 net/socket.c:2334\n __do_sys_setsockopt net/socket.c:2343 [inline]\n __se_sys_setsockopt net/socket.c:2340 [inline]\n __x64_sys_setsockopt+0xb5/0xd0 net/socket.c:2340\n do_syscall_64+0xfb/0x240\n entry_SYSCALL_64_after_hwframe+0x72/0x7a\nRIP: 0033:0x7fd22067dde9\nCode: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007fd21f9ff0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036\nRAX: ffffffffffffffda RBX: 00007fd2207abf80 RCX: 00007fd22067dde9\nRDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000003\nRBP: 00007fd2206ca47a R08: 0000000000000001 R09: 0000000000000000\nR10: 0000000020000880 R11: 0000000000000246 R12: 0000000000000000\nR13: 000000000000000b R14: 00007fd2207abf80 R15: 00007ffd2d0170d8\n \u003c/TASK\u003e\n\nAllocated by task 7238:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n poison_kmalloc_redzone mm/kasan/common.c:370 [inline]\n __kasan_kmalloc+0x98/0xb0 mm/kasan/common.c:387\n kasan_kmalloc include/linux/kasan.h:211 [inline]\n __do_kmalloc_node mm/slub.c:4069 [inline]\n __kmalloc_noprof+0x200/0x410 mm/slub.c:4082\n kmalloc_noprof include/linux/slab.h:664 [inline]\n __cgroup_bpf_run_filter_setsockopt+0xd47/0x1050 kernel/bpf/cgroup.c:1869\n do_sock_setsockopt+0x6b4/0x720 net/socket.c:2293\n __sys_setsockopt+0x1ae/0x250 net/socket.c:2334\n __do_sys_setsockopt net/socket.c:2343 [inline]\n __se_sys_setsockopt net/socket.c:2340 [inline]\n __x64_sys_setsockopt+0xb5/0xd0 net/socket.c:2340\n do_syscall_64+0xfb/0x240\n entry_SYSCALL_64_after_hwframe+0x72/0x7a\n\nThe buggy address belongs to the object at ffff88802cd73da0\n which belongs to the cache kmalloc-8 of size 8\nThe buggy address is located 0 bytes inside of\n allocated 1-byte region [ffff88802cd73da0, ffff88802cd73da1)\n\nThe buggy address belongs to the physical page:\npage: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff88802cd73020 pfn:0x2cd73\nflags: 0xfff80000000000(node=0|zone=1|lastcpupid=0xfff)\npage_type: 0xffffefff(slab)\nraw: 00fff80000000000 ffff888015041280 dead000000000100 dead000000000122\nraw: ffff88802cd73020 000000008080007f 00000001ffffefff 00\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35896",
"url": "https://www.suse.com/security/cve/CVE-2024-35896"
},
{
"category": "external",
"summary": "SUSE Bug 1224662 for CVE-2024-35896",
"url": "https://bugzilla.suse.com/1224662"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-35896"
},
{
"cve": "CVE-2024-35898",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35898"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: Fix potential data-race in __nft_flowtable_type_get()\n\nnft_unregister_flowtable_type() within nf_flow_inet_module_exit() can\nconcurrent with __nft_flowtable_type_get() within nf_tables_newflowtable().\nAnd thhere is not any protection when iterate over nf_tables_flowtables\nlist in __nft_flowtable_type_get(). Therefore, there is pertential\ndata-race of nf_tables_flowtables list entry.\n\nUse list_for_each_entry_rcu() to iterate over nf_tables_flowtables list\nin __nft_flowtable_type_get(), and use rcu_read_lock() in the caller\nnft_flowtable_type_get() to protect the entire type query process.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35898",
"url": "https://www.suse.com/security/cve/CVE-2024-35898"
},
{
"category": "external",
"summary": "SUSE Bug 1224498 for CVE-2024-35898",
"url": "https://bugzilla.suse.com/1224498"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-35898"
},
{
"cve": "CVE-2024-35899",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35899"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: flush pending destroy work before exit_net release\n\nSimilar to 2c9f0293280e (\"netfilter: nf_tables: flush pending destroy\nwork before netlink notifier\") to address a race between exit_net and\nthe destroy workqueue.\n\nThe trace below shows an element to be released via destroy workqueue\nwhile exit_net path (triggered via module removal) has already released\nthe set that is used in such transaction.\n\n[ 1360.547789] BUG: KASAN: slab-use-after-free in nf_tables_trans_destroy_work+0x3f5/0x590 [nf_tables]\n[ 1360.547861] Read of size 8 at addr ffff888140500cc0 by task kworker/4:1/152465\n[ 1360.547870] CPU: 4 PID: 152465 Comm: kworker/4:1 Not tainted 6.8.0+ #359\n[ 1360.547882] Workqueue: events nf_tables_trans_destroy_work [nf_tables]\n[ 1360.547984] Call Trace:\n[ 1360.547991] \u003cTASK\u003e\n[ 1360.547998] dump_stack_lvl+0x53/0x70\n[ 1360.548014] print_report+0xc4/0x610\n[ 1360.548026] ? __virt_addr_valid+0xba/0x160\n[ 1360.548040] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n[ 1360.548054] ? nf_tables_trans_destroy_work+0x3f5/0x590 [nf_tables]\n[ 1360.548176] kasan_report+0xae/0xe0\n[ 1360.548189] ? nf_tables_trans_destroy_work+0x3f5/0x590 [nf_tables]\n[ 1360.548312] nf_tables_trans_destroy_work+0x3f5/0x590 [nf_tables]\n[ 1360.548447] ? __pfx_nf_tables_trans_destroy_work+0x10/0x10 [nf_tables]\n[ 1360.548577] ? _raw_spin_unlock_irq+0x18/0x30\n[ 1360.548591] process_one_work+0x2f1/0x670\n[ 1360.548610] worker_thread+0x4d3/0x760\n[ 1360.548627] ? __pfx_worker_thread+0x10/0x10\n[ 1360.548640] kthread+0x16b/0x1b0\n[ 1360.548653] ? __pfx_kthread+0x10/0x10\n[ 1360.548665] ret_from_fork+0x2f/0x50\n[ 1360.548679] ? __pfx_kthread+0x10/0x10\n[ 1360.548690] ret_from_fork_asm+0x1a/0x30\n[ 1360.548707] \u003c/TASK\u003e\n\n[ 1360.548719] Allocated by task 192061:\n[ 1360.548726] kasan_save_stack+0x20/0x40\n[ 1360.548739] kasan_save_track+0x14/0x30\n[ 1360.548750] __kasan_kmalloc+0x8f/0xa0\n[ 1360.548760] __kmalloc_node+0x1f1/0x450\n[ 1360.548771] nf_tables_newset+0x10c7/0x1b50 [nf_tables]\n[ 1360.548883] nfnetlink_rcv_batch+0xbc4/0xdc0 [nfnetlink]\n[ 1360.548909] nfnetlink_rcv+0x1a8/0x1e0 [nfnetlink]\n[ 1360.548927] netlink_unicast+0x367/0x4f0\n[ 1360.548935] netlink_sendmsg+0x34b/0x610\n[ 1360.548944] ____sys_sendmsg+0x4d4/0x510\n[ 1360.548953] ___sys_sendmsg+0xc9/0x120\n[ 1360.548961] __sys_sendmsg+0xbe/0x140\n[ 1360.548971] do_syscall_64+0x55/0x120\n[ 1360.548982] entry_SYSCALL_64_after_hwframe+0x55/0x5d\n\n[ 1360.548994] Freed by task 192222:\n[ 1360.548999] kasan_save_stack+0x20/0x40\n[ 1360.549009] kasan_save_track+0x14/0x30\n[ 1360.549019] kasan_save_free_info+0x3b/0x60\n[ 1360.549028] poison_slab_object+0x100/0x180\n[ 1360.549036] __kasan_slab_free+0x14/0x30\n[ 1360.549042] kfree+0xb6/0x260\n[ 1360.549049] __nft_release_table+0x473/0x6a0 [nf_tables]\n[ 1360.549131] nf_tables_exit_net+0x170/0x240 [nf_tables]\n[ 1360.549221] ops_exit_list+0x50/0xa0\n[ 1360.549229] free_exit_list+0x101/0x140\n[ 1360.549236] unregister_pernet_operations+0x107/0x160\n[ 1360.549245] unregister_pernet_subsys+0x1c/0x30\n[ 1360.549254] nf_tables_module_exit+0x43/0x80 [nf_tables]\n[ 1360.549345] __do_sys_delete_module+0x253/0x370\n[ 1360.549352] do_syscall_64+0x55/0x120\n[ 1360.549360] entry_SYSCALL_64_after_hwframe+0x55/0x5d\n\n(gdb) list *__nft_release_table+0x473\n0x1e033 is in __nft_release_table (net/netfilter/nf_tables_api.c:11354).\n11349 list_for_each_entry_safe(flowtable, nf, \u0026table-\u003eflowtables, list) {\n11350 list_del(\u0026flowtable-\u003elist);\n11351 nft_use_dec(\u0026table-\u003euse);\n11352 nf_tables_flowtable_destroy(flowtable);\n11353 }\n11354 list_for_each_entry_safe(set, ns, \u0026table-\u003esets, list) {\n11355 list_del(\u0026set-\u003elist);\n11356 nft_use_dec(\u0026table-\u003euse);\n11357 if (set-\u003eflags \u0026 (NFT_SET_MAP | NFT_SET_OBJECT))\n11358 nft_map_deactivat\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35899",
"url": "https://www.suse.com/security/cve/CVE-2024-35899"
},
{
"category": "external",
"summary": "SUSE Bug 1224499 for CVE-2024-35899",
"url": "https://bugzilla.suse.com/1224499"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-35899"
},
{
"cve": "CVE-2024-35900",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35900"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: reject new basechain after table flag update\n\nWhen dormant flag is toggled, hooks are disabled in the commit phase by\niterating over current chains in table (existing and new).\n\nThe following configuration allows for an inconsistent state:\n\n add table x\n add chain x y { type filter hook input priority 0; }\n add table x { flags dormant; }\n add chain x w { type filter hook input priority 1; }\n\nwhich triggers the following warning when trying to unregister chain w\nwhich is already unregistered.\n\n[ 127.322252] WARNING: CPU: 7 PID: 1211 at net/netfilter/core.c:50 1 __nf_unregister_net_hook+0x21a/0x260\n[...]\n[ 127.322519] Call Trace:\n[ 127.322521] \u003cTASK\u003e\n[ 127.322524] ? __warn+0x9f/0x1a0\n[ 127.322531] ? __nf_unregister_net_hook+0x21a/0x260\n[ 127.322537] ? report_bug+0x1b1/0x1e0\n[ 127.322545] ? handle_bug+0x3c/0x70\n[ 127.322552] ? exc_invalid_op+0x17/0x40\n[ 127.322556] ? asm_exc_invalid_op+0x1a/0x20\n[ 127.322563] ? kasan_save_free_info+0x3b/0x60\n[ 127.322570] ? __nf_unregister_net_hook+0x6a/0x260\n[ 127.322577] ? __nf_unregister_net_hook+0x21a/0x260\n[ 127.322583] ? __nf_unregister_net_hook+0x6a/0x260\n[ 127.322590] ? __nf_tables_unregister_hook+0x8a/0xe0 [nf_tables]\n[ 127.322655] nft_table_disable+0x75/0xf0 [nf_tables]\n[ 127.322717] nf_tables_commit+0x2571/0x2620 [nf_tables]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35900",
"url": "https://www.suse.com/security/cve/CVE-2024-35900"
},
{
"category": "external",
"summary": "SUSE Bug 1224497 for CVE-2024-35900",
"url": "https://bugzilla.suse.com/1224497"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-35900"
},
{
"cve": "CVE-2024-35908",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35908"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntls: get psock ref after taking rxlock to avoid leak\n\nAt the start of tls_sw_recvmsg, we take a reference on the psock, and\nthen call tls_rx_reader_lock. If that fails, we return directly\nwithout releasing the reference.\n\nInstead of adding a new label, just take the reference after locking\nhas succeeded, since we don\u0027t need it before.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35908",
"url": "https://www.suse.com/security/cve/CVE-2024-35908"
},
{
"category": "external",
"summary": "SUSE Bug 1224490 for CVE-2024-35908",
"url": "https://bugzilla.suse.com/1224490"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-35908"
},
{
"cve": "CVE-2024-35925",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35925"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock: prevent division by zero in blk_rq_stat_sum()\n\nThe expression dst-\u003enr_samples + src-\u003enr_samples may\nhave zero value on overflow. It is necessary to add\na check to avoid division by zero.\n\nFound by Linux Verification Center (linuxtesting.org) with Svace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35925",
"url": "https://www.suse.com/security/cve/CVE-2024-35925"
},
{
"category": "external",
"summary": "SUSE Bug 1224661 for CVE-2024-35925",
"url": "https://bugzilla.suse.com/1224661"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-35925"
},
{
"cve": "CVE-2024-35926",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35926"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: iaa - Fix async_disable descriptor leak\n\nThe disable_async paths of iaa_compress/decompress() don\u0027t free idxd\ndescriptors in the async_disable case. Currently this only happens in\nthe testcases where req-\u003edst is set to null. Add a test to free them\nin those paths.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35926",
"url": "https://www.suse.com/security/cve/CVE-2024-35926"
},
{
"category": "external",
"summary": "SUSE Bug 1224655 for CVE-2024-35926",
"url": "https://bugzilla.suse.com/1224655"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-35926"
},
{
"cve": "CVE-2024-35934",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35934"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/smc: reduce rtnl pressure in smc_pnet_create_pnetids_list()\n\nMany syzbot reports show extreme rtnl pressure, and many of them hint\nthat smc acquires rtnl in netns creation for no good reason [1]\n\nThis patch returns early from smc_pnet_net_init()\nif there is no netdevice yet.\n\nI am not even sure why smc_pnet_create_pnetids_list() even exists,\nbecause smc_pnet_netdev_event() is also calling\nsmc_pnet_add_base_pnetid() when handling NETDEV_UP event.\n\n[1] extract of typical syzbot reports\n\n2 locks held by syz-executor.3/12252:\n #0: ffffffff8f369610 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0 net/core/net_namespace.c:491\n #1: ffffffff8f375b88 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_create_pnetids_list net/smc/smc_pnet.c:809 [inline]\n #1: ffffffff8f375b88 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x10a/0x1e0 net/smc/smc_pnet.c:878\n2 locks held by syz-executor.4/12253:\n #0: ffffffff8f369610 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0 net/core/net_namespace.c:491\n #1: ffffffff8f375b88 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_create_pnetids_list net/smc/smc_pnet.c:809 [inline]\n #1: ffffffff8f375b88 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x10a/0x1e0 net/smc/smc_pnet.c:878\n2 locks held by syz-executor.1/12257:\n #0: ffffffff8f369610 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0 net/core/net_namespace.c:491\n #1: ffffffff8f375b88 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_create_pnetids_list net/smc/smc_pnet.c:809 [inline]\n #1: ffffffff8f375b88 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x10a/0x1e0 net/smc/smc_pnet.c:878\n2 locks held by syz-executor.2/12261:\n #0: ffffffff8f369610 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0 net/core/net_namespace.c:491\n #1: ffffffff8f375b88 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_create_pnetids_list net/smc/smc_pnet.c:809 [inline]\n #1: ffffffff8f375b88 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x10a/0x1e0 net/smc/smc_pnet.c:878\n2 locks held by syz-executor.0/12265:\n #0: ffffffff8f369610 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0 net/core/net_namespace.c:491\n #1: ffffffff8f375b88 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_create_pnetids_list net/smc/smc_pnet.c:809 [inline]\n #1: ffffffff8f375b88 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x10a/0x1e0 net/smc/smc_pnet.c:878\n2 locks held by syz-executor.3/12268:\n #0: ffffffff8f369610 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0 net/core/net_namespace.c:491\n #1: ffffffff8f375b88 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_create_pnetids_list net/smc/smc_pnet.c:809 [inline]\n #1: ffffffff8f375b88 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x10a/0x1e0 net/smc/smc_pnet.c:878\n2 locks held by syz-executor.4/12271:\n #0: ffffffff8f369610 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0 net/core/net_namespace.c:491\n #1: ffffffff8f375b88 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_create_pnetids_list net/smc/smc_pnet.c:809 [inline]\n #1: ffffffff8f375b88 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x10a/0x1e0 net/smc/smc_pnet.c:878\n2 locks held by syz-executor.1/12274:\n #0: ffffffff8f369610 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0 net/core/net_namespace.c:491\n #1: ffffffff8f375b88 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_create_pnetids_list net/smc/smc_pnet.c:809 [inline]\n #1: ffffffff8f375b88 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x10a/0x1e0 net/smc/smc_pnet.c:878\n2 locks held by syz-executor.2/12280:\n #0: ffffffff8f369610 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0 net/core/net_namespace.c:491\n #1: ffffffff8f375b88 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_create_pnetids_list net/smc/smc_pnet.c:809 [inline]\n #1: ffffffff8f375b88 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x10a/0x1e0 net/smc/smc_pnet.c:878",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35934",
"url": "https://www.suse.com/security/cve/CVE-2024-35934"
},
{
"category": "external",
"summary": "SUSE Bug 1224641 for CVE-2024-35934",
"url": "https://bugzilla.suse.com/1224641"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "low"
}
],
"title": "CVE-2024-35934"
},
{
"cve": "CVE-2024-35942",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35942"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npmdomain: imx8mp-blk-ctrl: imx8mp_blk: Add fdcc clock to hdmimix domain\n\nAccording to i.MX8MP RM and HDMI ADD, the fdcc clock is part of\nhdmi rx verification IP that should not enable for HDMI TX.\nBut actually if the clock is disabled before HDMI/LCDIF probe,\nLCDIF will not get pixel clock from HDMI PHY and print the error\nlogs:\n\n[CRTC:39:crtc-2] vblank wait timed out\nWARNING: CPU: 2 PID: 9 at drivers/gpu/drm/drm_atomic_helper.c:1634 drm_atomic_helper_wait_for_vblanks.part.0+0x23c/0x260\n\nAdd fdcc clock to LCDIF and HDMI TX power domains to fix the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35942",
"url": "https://www.suse.com/security/cve/CVE-2024-35942"
},
{
"category": "external",
"summary": "SUSE Bug 1224589 for CVE-2024-35942",
"url": "https://bugzilla.suse.com/1224589"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "low"
}
],
"title": "CVE-2024-35942"
},
{
"cve": "CVE-2024-35957",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35957"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommu/vt-d: Fix WARN_ON in iommu probe path\n\nCommit 1a75cc710b95 (\"iommu/vt-d: Use rbtree to track iommu probed\ndevices\") adds all devices probed by the iommu driver in a rbtree\nindexed by the source ID of each device. It assumes that each device\nhas a unique source ID. This assumption is incorrect and the VT-d\nspec doesn\u0027t state this requirement either.\n\nThe reason for using a rbtree to track devices is to look up the device\nwith PCI bus and devfunc in the paths of handling ATS invalidation time\nout error and the PRI I/O page faults. Both are PCI ATS feature related.\n\nOnly track the devices that have PCI ATS capabilities in the rbtree to\navoid unnecessary WARN_ON in the iommu probe path. Otherwise, on some\nplatforms below kernel splat will be displayed and the iommu probe results\nin failure.\n\n WARNING: CPU: 3 PID: 166 at drivers/iommu/intel/iommu.c:158 intel_iommu_probe_device+0x319/0xd90\n Call Trace:\n \u003cTASK\u003e\n ? __warn+0x7e/0x180\n ? intel_iommu_probe_device+0x319/0xd90\n ? report_bug+0x1f8/0x200\n ? handle_bug+0x3c/0x70\n ? exc_invalid_op+0x18/0x70\n ? asm_exc_invalid_op+0x1a/0x20\n ? intel_iommu_probe_device+0x319/0xd90\n ? debug_mutex_init+0x37/0x50\n __iommu_probe_device+0xf2/0x4f0\n iommu_probe_device+0x22/0x70\n iommu_bus_notifier+0x1e/0x40\n notifier_call_chain+0x46/0x150\n blocking_notifier_call_chain+0x42/0x60\n bus_notify+0x2f/0x50\n device_add+0x5ed/0x7e0\n platform_device_add+0xf5/0x240\n mfd_add_devices+0x3f9/0x500\n ? preempt_count_add+0x4c/0xa0\n ? up_write+0xa2/0x1b0\n ? __debugfs_create_file+0xe3/0x150\n intel_lpss_probe+0x49f/0x5b0\n ? pci_conf1_write+0xa3/0xf0\n intel_lpss_pci_probe+0xcf/0x110 [intel_lpss_pci]\n pci_device_probe+0x95/0x120\n really_probe+0xd9/0x370\n ? __pfx___driver_attach+0x10/0x10\n __driver_probe_device+0x73/0x150\n driver_probe_device+0x19/0xa0\n __driver_attach+0xb6/0x180\n ? __pfx___driver_attach+0x10/0x10\n bus_for_each_dev+0x77/0xd0\n bus_add_driver+0x114/0x210\n driver_register+0x5b/0x110\n ? __pfx_intel_lpss_pci_driver_init+0x10/0x10 [intel_lpss_pci]\n do_one_initcall+0x57/0x2b0\n ? kmalloc_trace+0x21e/0x280\n ? do_init_module+0x1e/0x210\n do_init_module+0x5f/0x210\n load_module+0x1d37/0x1fc0\n ? init_module_from_file+0x86/0xd0\n init_module_from_file+0x86/0xd0\n idempotent_init_module+0x17c/0x230\n __x64_sys_finit_module+0x56/0xb0\n do_syscall_64+0x6e/0x140\n entry_SYSCALL_64_after_hwframe+0x71/0x79",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35957",
"url": "https://www.suse.com/security/cve/CVE-2024-35957"
},
{
"category": "external",
"summary": "SUSE Bug 1224673 for CVE-2024-35957",
"url": "https://bugzilla.suse.com/1224673"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-35957"
},
{
"cve": "CVE-2024-35962",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35962"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: complete validation of user input\n\nIn my recent commit, I missed that do_replace() handlers\nuse copy_from_sockptr() (which I fixed), followed\nby unsafe copy_from_sockptr_offset() calls.\n\nIn all functions, we can perform the @optlen validation\nbefore even calling xt_alloc_table_info() with the following\ncheck:\n\nif ((u64)optlen \u003c (u64)tmp.size + sizeof(tmp))\n return -EINVAL;",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35962",
"url": "https://www.suse.com/security/cve/CVE-2024-35962"
},
{
"category": "external",
"summary": "SUSE Bug 1224583 for CVE-2024-35962",
"url": "https://bugzilla.suse.com/1224583"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-35962"
},
{
"cve": "CVE-2024-35970",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35970"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naf_unix: Clear stale u-\u003eoob_skb.\n\nsyzkaller started to report deadlock of unix_gc_lock after commit\n4090fa373f0e (\"af_unix: Replace garbage collection algorithm.\"), but\nit just uncovers the bug that has been there since commit 314001f0bf92\n(\"af_unix: Add OOB support\").\n\nThe repro basically does the following.\n\n from socket import *\n from array import array\n\n c1, c2 = socketpair(AF_UNIX, SOCK_STREAM)\n c1.sendmsg([b\u0027a\u0027], [(SOL_SOCKET, SCM_RIGHTS, array(\"i\", [c2.fileno()]))], MSG_OOB)\n c2.recv(1) # blocked as no normal data in recv queue\n\n c2.close() # done async and unblock recv()\n c1.close() # done async and trigger GC\n\nA socket sends its file descriptor to itself as OOB data and tries to\nreceive normal data, but finally recv() fails due to async close().\n\nThe problem here is wrong handling of OOB skb in manage_oob(). When\nrecvmsg() is called without MSG_OOB, manage_oob() is called to check\nif the peeked skb is OOB skb. In such a case, manage_oob() pops it\nout of the receive queue but does not clear unix_sock(sk)-\u003eoob_skb.\nThis is wrong in terms of uAPI.\n\nLet\u0027s say we send \"hello\" with MSG_OOB, and \"world\" without MSG_OOB.\nThe \u0027o\u0027 is handled as OOB data. When recv() is called twice without\nMSG_OOB, the OOB data should be lost.\n\n \u003e\u003e\u003e from socket import *\n \u003e\u003e\u003e c1, c2 = socketpair(AF_UNIX, SOCK_STREAM, 0)\n \u003e\u003e\u003e c1.send(b\u0027hello\u0027, MSG_OOB) # \u0027o\u0027 is OOB data\n 5\n \u003e\u003e\u003e c1.send(b\u0027world\u0027)\n 5\n \u003e\u003e\u003e c2.recv(5) # OOB data is not received\n b\u0027hell\u0027\n \u003e\u003e\u003e c2.recv(5) # OOB date is skipped\n b\u0027world\u0027\n \u003e\u003e\u003e c2.recv(5, MSG_OOB) # This should return an error\n b\u0027o\u0027\n\nIn the same situation, TCP actually returns -EINVAL for the last\nrecv().\n\nAlso, if we do not clear unix_sk(sk)-\u003eoob_skb, unix_poll() always set\nEPOLLPRI even though the data has passed through by previous recv().\n\nTo avoid these issues, we must clear unix_sk(sk)-\u003eoob_skb when dequeuing\nit from recv queue.\n\nThe reason why the old GC did not trigger the deadlock is because the\nold GC relied on the receive queue to detect the loop.\n\nWhen it is triggered, the socket with OOB data is marked as GC candidate\nbecause file refcount == inflight count (1). However, after traversing\nall inflight sockets, the socket still has a positive inflight count (1),\nthus the socket is excluded from candidates. Then, the old GC lose the\nchance to garbage-collect the socket.\n\nWith the old GC, the repro continues to create true garbage that will\nnever be freed nor detected by kmemleak as it\u0027s linked to the global\ninflight list. That\u0027s why we couldn\u0027t even notice the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35970",
"url": "https://www.suse.com/security/cve/CVE-2024-35970"
},
{
"category": "external",
"summary": "SUSE Bug 1224584 for CVE-2024-35970",
"url": "https://bugzilla.suse.com/1224584"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-35970"
},
{
"cve": "CVE-2024-35976",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35976"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxsk: validate user input for XDP_{UMEM|COMPLETION}_FILL_RING\n\nsyzbot reported an illegal copy in xsk_setsockopt() [1]\n\nMake sure to validate setsockopt() @optlen parameter.\n\n[1]\n\n BUG: KASAN: slab-out-of-bounds in copy_from_sockptr_offset include/linux/sockptr.h:49 [inline]\n BUG: KASAN: slab-out-of-bounds in copy_from_sockptr include/linux/sockptr.h:55 [inline]\n BUG: KASAN: slab-out-of-bounds in xsk_setsockopt+0x909/0xa40 net/xdp/xsk.c:1420\nRead of size 4 at addr ffff888028c6cde3 by task syz-executor.0/7549\n\nCPU: 0 PID: 7549 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-08951-gfe46a7dd189e #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:114\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n copy_from_sockptr_offset include/linux/sockptr.h:49 [inline]\n copy_from_sockptr include/linux/sockptr.h:55 [inline]\n xsk_setsockopt+0x909/0xa40 net/xdp/xsk.c:1420\n do_sock_setsockopt+0x3af/0x720 net/socket.c:2311\n __sys_setsockopt+0x1ae/0x250 net/socket.c:2334\n __do_sys_setsockopt net/socket.c:2343 [inline]\n __se_sys_setsockopt net/socket.c:2340 [inline]\n __x64_sys_setsockopt+0xb5/0xd0 net/socket.c:2340\n do_syscall_64+0xfb/0x240\n entry_SYSCALL_64_after_hwframe+0x6d/0x75\nRIP: 0033:0x7fb40587de69\nCode: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007fb40665a0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036\nRAX: ffffffffffffffda RBX: 00007fb4059abf80 RCX: 00007fb40587de69\nRDX: 0000000000000005 RSI: 000000000000011b RDI: 0000000000000006\nRBP: 00007fb4058ca47a R08: 0000000000000002 R09: 0000000000000000\nR10: 0000000020001980 R11: 0000000000000246 R12: 0000000000000000\nR13: 000000000000000b R14: 00007fb4059abf80 R15: 00007fff57ee4d08\n \u003c/TASK\u003e\n\nAllocated by task 7549:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n poison_kmalloc_redzone mm/kasan/common.c:370 [inline]\n __kasan_kmalloc+0x98/0xb0 mm/kasan/common.c:387\n kasan_kmalloc include/linux/kasan.h:211 [inline]\n __do_kmalloc_node mm/slub.c:3966 [inline]\n __kmalloc+0x233/0x4a0 mm/slub.c:3979\n kmalloc include/linux/slab.h:632 [inline]\n __cgroup_bpf_run_filter_setsockopt+0xd2f/0x1040 kernel/bpf/cgroup.c:1869\n do_sock_setsockopt+0x6b4/0x720 net/socket.c:2293\n __sys_setsockopt+0x1ae/0x250 net/socket.c:2334\n __do_sys_setsockopt net/socket.c:2343 [inline]\n __se_sys_setsockopt net/socket.c:2340 [inline]\n __x64_sys_setsockopt+0xb5/0xd0 net/socket.c:2340\n do_syscall_64+0xfb/0x240\n entry_SYSCALL_64_after_hwframe+0x6d/0x75\n\nThe buggy address belongs to the object at ffff888028c6cde0\n which belongs to the cache kmalloc-8 of size 8\nThe buggy address is located 1 bytes to the right of\n allocated 2-byte region [ffff888028c6cde0, ffff888028c6cde2)\n\nThe buggy address belongs to the physical page:\npage:ffffea0000a31b00 refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888028c6c9c0 pfn:0x28c6c\nanon flags: 0xfff00000000800(slab|node=0|zone=1|lastcpupid=0x7ff)\npage_type: 0xffffffff()\nraw: 00fff00000000800 ffff888014c41280 0000000000000000 dead000000000001\nraw: ffff888028c6c9c0 0000000080800057 00000001ffffffff 0000000000000000\npage dumped because: kasan: bad access detected\npage_owner tracks the page as allocated\npage last allocated via order 0, migratetype Unmovable, gfp_mask 0x112cc0(GFP_USER|__GFP_NOWARN|__GFP_NORETRY), pid 6648, tgid 6644 (syz-executor.0), ts 133906047828, free_ts 133859922223\n set_page_owner include/linux/page_owner.h:31 [inline]\n post_alloc_hook+0x1ea/0x210 mm/page_alloc.c:1533\n prep_new_page mm/page_alloc.c:\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35976",
"url": "https://www.suse.com/security/cve/CVE-2024-35976"
},
{
"category": "external",
"summary": "SUSE Bug 1224575 for CVE-2024-35976",
"url": "https://bugzilla.suse.com/1224575"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-35976"
},
{
"cve": "CVE-2024-35979",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35979"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nraid1: fix use-after-free for original bio in raid1_write_request()\n\nr1_bio-\u003ebios[] is used to record new bios that will be issued to\nunderlying disks, however, in raid1_write_request(), r1_bio-\u003ebios[]\nwill set to the original bio temporarily. Meanwhile, if blocked rdev\nis set, free_r1bio() will be called causing that all r1_bio-\u003ebios[]\nto be freed:\n\nraid1_write_request()\n r1_bio = alloc_r1bio(mddev, bio); -\u003e r1_bio-\u003ebios[] is NULL\n for (i = 0; i \u003c disks; i++) -\u003e for each rdev in conf\n // first rdev is normal\n r1_bio-\u003ebios[0] = bio; -\u003e set to original bio\n // second rdev is blocked\n if (test_bit(Blocked, \u0026rdev-\u003eflags))\n break\n\n if (blocked_rdev)\n free_r1bio()\n put_all_bios()\n bio_put(r1_bio-\u003ebios[0]) -\u003e original bio is freed\n\nTest scripts:\n\nmdadm -CR /dev/md0 -l1 -n4 /dev/sd[abcd] --assume-clean\nfio -filename=/dev/md0 -ioengine=libaio -rw=write -bs=4k -numjobs=1 \\\n -iodepth=128 -name=test -direct=1\necho blocked \u003e /sys/block/md0/md/rd2/state\n\nTest result:\n\nBUG bio-264 (Not tainted): Object already free\n-----------------------------------------------------------------------------\n\nAllocated in mempool_alloc_slab+0x24/0x50 age=1 cpu=1 pid=869\n kmem_cache_alloc+0x324/0x480\n mempool_alloc_slab+0x24/0x50\n mempool_alloc+0x6e/0x220\n bio_alloc_bioset+0x1af/0x4d0\n blkdev_direct_IO+0x164/0x8a0\n blkdev_write_iter+0x309/0x440\n aio_write+0x139/0x2f0\n io_submit_one+0x5ca/0xb70\n __do_sys_io_submit+0x86/0x270\n __x64_sys_io_submit+0x22/0x30\n do_syscall_64+0xb1/0x210\n entry_SYSCALL_64_after_hwframe+0x6c/0x74\nFreed in mempool_free_slab+0x1f/0x30 age=1 cpu=1 pid=869\n kmem_cache_free+0x28c/0x550\n mempool_free_slab+0x1f/0x30\n mempool_free+0x40/0x100\n bio_free+0x59/0x80\n bio_put+0xf0/0x220\n free_r1bio+0x74/0xb0\n raid1_make_request+0xadf/0x1150\n md_handle_request+0xc7/0x3b0\n md_submit_bio+0x76/0x130\n __submit_bio+0xd8/0x1d0\n submit_bio_noacct_nocheck+0x1eb/0x5c0\n submit_bio_noacct+0x169/0xd40\n submit_bio+0xee/0x1d0\n blkdev_direct_IO+0x322/0x8a0\n blkdev_write_iter+0x309/0x440\n aio_write+0x139/0x2f0\n\nSince that bios for underlying disks are not allocated yet, fix this\nproblem by using mempool_free() directly to free the r1_bio.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35979",
"url": "https://www.suse.com/security/cve/CVE-2024-35979"
},
{
"category": "external",
"summary": "SUSE Bug 1224572 for CVE-2024-35979",
"url": "https://bugzilla.suse.com/1224572"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-35979"
},
{
"cve": "CVE-2024-35998",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35998"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb3: fix lock ordering potential deadlock in cifs_sync_mid_result\n\nCoverity spotted that the cifs_sync_mid_result function could deadlock\n\n\"Thread deadlock (ORDER_REVERSAL) lock_order: Calling spin_lock acquires\nlock TCP_Server_Info.srv_lock while holding lock TCP_Server_Info.mid_lock\"\n\nAddresses-Coverity: 1590401 (\"Thread deadlock (ORDER_REVERSAL)\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35998",
"url": "https://www.suse.com/security/cve/CVE-2024-35998"
},
{
"category": "external",
"summary": "SUSE Bug 1224549 for CVE-2024-35998",
"url": "https://bugzilla.suse.com/1224549"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-35998"
},
{
"cve": "CVE-2024-36003",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36003"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: fix LAG and VF lock dependency in ice_reset_vf()\n\n9f74a3dfcf83 (\"ice: Fix VF Reset paths when interface in a failed over\naggregate\"), the ice driver has acquired the LAG mutex in ice_reset_vf().\nThe commit placed this lock acquisition just prior to the acquisition of\nthe VF configuration lock.\n\nIf ice_reset_vf() acquires the configuration lock via the ICE_VF_RESET_LOCK\nflag, this could deadlock with ice_vc_cfg_qs_msg() because it always\nacquires the locks in the order of the VF configuration lock and then the\nLAG mutex.\n\nLockdep reports this violation almost immediately on creating and then\nremoving 2 VF:\n\n======================================================\nWARNING: possible circular locking dependency detected\n6.8.0-rc6 #54 Tainted: G W O\n------------------------------------------------------\nkworker/60:3/6771 is trying to acquire lock:\nff40d43e099380a0 (\u0026vf-\u003ecfg_lock){+.+.}-{3:3}, at: ice_reset_vf+0x22f/0x4d0 [ice]\n\nbut task is already holding lock:\nff40d43ea1961210 (\u0026pf-\u003elag_mutex){+.+.}-{3:3}, at: ice_reset_vf+0xb7/0x4d0 [ice]\n\nwhich lock already depends on the new lock.\n\nthe existing dependency chain (in reverse order) is:\n\n-\u003e #1 (\u0026pf-\u003elag_mutex){+.+.}-{3:3}:\n __lock_acquire+0x4f8/0xb40\n lock_acquire+0xd4/0x2d0\n __mutex_lock+0x9b/0xbf0\n ice_vc_cfg_qs_msg+0x45/0x690 [ice]\n ice_vc_process_vf_msg+0x4f5/0x870 [ice]\n __ice_clean_ctrlq+0x2b5/0x600 [ice]\n ice_service_task+0x2c9/0x480 [ice]\n process_one_work+0x1e9/0x4d0\n worker_thread+0x1e1/0x3d0\n kthread+0x104/0x140\n ret_from_fork+0x31/0x50\n ret_from_fork_asm+0x1b/0x30\n\n-\u003e #0 (\u0026vf-\u003ecfg_lock){+.+.}-{3:3}:\n check_prev_add+0xe2/0xc50\n validate_chain+0x558/0x800\n __lock_acquire+0x4f8/0xb40\n lock_acquire+0xd4/0x2d0\n __mutex_lock+0x9b/0xbf0\n ice_reset_vf+0x22f/0x4d0 [ice]\n ice_process_vflr_event+0x98/0xd0 [ice]\n ice_service_task+0x1cc/0x480 [ice]\n process_one_work+0x1e9/0x4d0\n worker_thread+0x1e1/0x3d0\n kthread+0x104/0x140\n ret_from_fork+0x31/0x50\n ret_from_fork_asm+0x1b/0x30\n\nother info that might help us debug this:\n Possible unsafe locking scenario:\n CPU0 CPU1\n ---- ----\n lock(\u0026pf-\u003elag_mutex);\n lock(\u0026vf-\u003ecfg_lock);\n lock(\u0026pf-\u003elag_mutex);\n lock(\u0026vf-\u003ecfg_lock);\n\n *** DEADLOCK ***\n4 locks held by kworker/60:3/6771:\n #0: ff40d43e05428b38 ((wq_completion)ice){+.+.}-{0:0}, at: process_one_work+0x176/0x4d0\n #1: ff50d06e05197e58 ((work_completion)(\u0026pf-\u003eserv_task)){+.+.}-{0:0}, at: process_one_work+0x176/0x4d0\n #2: ff40d43ea1960e50 (\u0026pf-\u003evfs.table_lock){+.+.}-{3:3}, at: ice_process_vflr_event+0x48/0xd0 [ice]\n #3: ff40d43ea1961210 (\u0026pf-\u003elag_mutex){+.+.}-{3:3}, at: ice_reset_vf+0xb7/0x4d0 [ice]\n\nstack backtrace:\nCPU: 60 PID: 6771 Comm: kworker/60:3 Tainted: G W O 6.8.0-rc6 #54\nHardware name:\nWorkqueue: ice ice_service_task [ice]\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x4a/0x80\n check_noncircular+0x12d/0x150\n check_prev_add+0xe2/0xc50\n ? save_trace+0x59/0x230\n ? add_chain_cache+0x109/0x450\n validate_chain+0x558/0x800\n __lock_acquire+0x4f8/0xb40\n ? lockdep_hardirqs_on+0x7d/0x100\n lock_acquire+0xd4/0x2d0\n ? ice_reset_vf+0x22f/0x4d0 [ice]\n ? lock_is_held_type+0xc7/0x120\n __mutex_lock+0x9b/0xbf0\n ? ice_reset_vf+0x22f/0x4d0 [ice]\n ? ice_reset_vf+0x22f/0x4d0 [ice]\n ? rcu_is_watching+0x11/0x50\n ? ice_reset_vf+0x22f/0x4d0 [ice]\n ice_reset_vf+0x22f/0x4d0 [ice]\n ? process_one_work+0x176/0x4d0\n ice_process_vflr_event+0x98/0xd0 [ice]\n ice_service_task+0x1cc/0x480 [ice]\n process_one_work+0x1e9/0x4d0\n worker_thread+0x1e1/0x3d0\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x104/0x140\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x31/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n\nTo avoid deadlock, we must acquire the LAG \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36003",
"url": "https://www.suse.com/security/cve/CVE-2024-36003"
},
{
"category": "external",
"summary": "SUSE Bug 1224544 for CVE-2024-36003",
"url": "https://bugzilla.suse.com/1224544"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36003"
},
{
"cve": "CVE-2024-36004",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36004"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni40e: Do not use WQ_MEM_RECLAIM flag for workqueue\n\nIssue reported by customer during SRIOV testing, call trace:\nWhen both i40e and the i40iw driver are loaded, a warning\nin check_flush_dependency is being triggered. This seems\nto be because of the i40e driver workqueue is allocated with\nthe WQ_MEM_RECLAIM flag, and the i40iw one is not.\n\nSimilar error was encountered on ice too and it was fixed by\nremoving the flag. Do the same for i40e too.\n\n[Feb 9 09:08] ------------[ cut here ]------------\n[ +0.000004] workqueue: WQ_MEM_RECLAIM i40e:i40e_service_task [i40e] is\nflushing !WQ_MEM_RECLAIM infiniband:0x0\n[ +0.000060] WARNING: CPU: 0 PID: 937 at kernel/workqueue.c:2966\ncheck_flush_dependency+0x10b/0x120\n[ +0.000007] Modules linked in: snd_seq_dummy snd_hrtimer snd_seq\nsnd_timer snd_seq_device snd soundcore nls_utf8 cifs cifs_arc4\nnls_ucs2_utils rdma_cm iw_cm ib_cm cifs_md4 dns_resolver netfs qrtr\nrfkill sunrpc vfat fat intel_rapl_msr intel_rapl_common irdma\nintel_uncore_frequency intel_uncore_frequency_common ice ipmi_ssif\nisst_if_common skx_edac nfit libnvdimm x86_pkg_temp_thermal\nintel_powerclamp gnss coretemp ib_uverbs rapl intel_cstate ib_core\niTCO_wdt iTCO_vendor_support acpi_ipmi mei_me ipmi_si intel_uncore\nioatdma i2c_i801 joydev pcspkr mei ipmi_devintf lpc_ich\nintel_pch_thermal i2c_smbus ipmi_msghandler acpi_power_meter acpi_pad\nxfs libcrc32c ast sd_mod drm_shmem_helper t10_pi drm_kms_helper sg ixgbe\ndrm i40e ahci crct10dif_pclmul libahci crc32_pclmul igb crc32c_intel\nlibata ghash_clmulni_intel i2c_algo_bit mdio dca wmi dm_mirror\ndm_region_hash dm_log dm_mod fuse\n[ +0.000050] CPU: 0 PID: 937 Comm: kworker/0:3 Kdump: loaded Not\ntainted 6.8.0-rc2-Feb-net_dev-Qiueue-00279-gbd43c5687e05 #1\n[ +0.000003] Hardware name: Intel Corporation S2600BPB/S2600BPB, BIOS\nSE5C620.86B.02.01.0013.121520200651 12/15/2020\n[ +0.000001] Workqueue: i40e i40e_service_task [i40e]\n[ +0.000024] RIP: 0010:check_flush_dependency+0x10b/0x120\n[ +0.000003] Code: ff 49 8b 54 24 18 48 8d 8b b0 00 00 00 49 89 e8 48\n81 c6 b0 00 00 00 48 c7 c7 b0 97 fa 9f c6 05 8a cc 1f 02 01 e8 35 b3 fd\nff \u003c0f\u003e 0b e9 10 ff ff ff 80 3d 78 cc 1f 02 00 75 94 e9 46 ff ff ff 90\n[ +0.000002] RSP: 0018:ffffbd294976bcf8 EFLAGS: 00010282\n[ +0.000002] RAX: 0000000000000000 RBX: ffff94d4c483c000 RCX:\n0000000000000027\n[ +0.000001] RDX: ffff94d47f620bc8 RSI: 0000000000000001 RDI:\nffff94d47f620bc0\n[ +0.000001] RBP: 0000000000000000 R08: 0000000000000000 R09:\n00000000ffff7fff\n[ +0.000001] R10: ffffbd294976bb98 R11: ffffffffa0be65e8 R12:\nffff94c5451ea180\n[ +0.000001] R13: ffff94c5ab5e8000 R14: ffff94c5c20b6e05 R15:\nffff94c5f1330ab0\n[ +0.000001] FS: 0000000000000000(0000) GS:ffff94d47f600000(0000)\nknlGS:0000000000000000\n[ +0.000002] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ +0.000001] CR2: 00007f9e6f1fca70 CR3: 0000000038e20004 CR4:\n00000000007706f0\n[ +0.000000] DR0: 0000000000000000 DR1: 0000000000000000 DR2:\n0000000000000000\n[ +0.000001] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7:\n0000000000000400\n[ +0.000001] PKRU: 55555554\n[ +0.000001] Call Trace:\n[ +0.000001] \u003cTASK\u003e\n[ +0.000002] ? __warn+0x80/0x130\n[ +0.000003] ? check_flush_dependency+0x10b/0x120\n[ +0.000002] ? report_bug+0x195/0x1a0\n[ +0.000005] ? handle_bug+0x3c/0x70\n[ +0.000003] ? exc_invalid_op+0x14/0x70\n[ +0.000002] ? asm_exc_invalid_op+0x16/0x20\n[ +0.000006] ? check_flush_dependency+0x10b/0x120\n[ +0.000002] ? check_flush_dependency+0x10b/0x120\n[ +0.000002] __flush_workqueue+0x126/0x3f0\n[ +0.000015] ib_cache_cleanup_one+0x1c/0xe0 [ib_core]\n[ +0.000056] __ib_unregister_device+0x6a/0xb0 [ib_core]\n[ +0.000023] ib_unregister_device_and_put+0x34/0x50 [ib_core]\n[ +0.000020] i40iw_close+0x4b/0x90 [irdma]\n[ +0.000022] i40e_notify_client_of_netdev_close+0x54/0xc0 [i40e]\n[ +0.000035] i40e_service_task+0x126/0x190 [i40e]\n[ +0.000024] process_one_work+0x174/0x340\n[ +0.000003] worker_th\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36004",
"url": "https://www.suse.com/security/cve/CVE-2024-36004"
},
{
"category": "external",
"summary": "SUSE Bug 1224545 for CVE-2024-36004",
"url": "https://bugzilla.suse.com/1224545"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36004"
},
{
"cve": "CVE-2024-36005",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36005"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: honor table dormant flag from netdev release event path\n\nCheck for table dormant flag otherwise netdev release event path tries\nto unregister an already unregistered hook.\n\n[524854.857999] ------------[ cut here ]------------\n[524854.858010] WARNING: CPU: 0 PID: 3386599 at net/netfilter/core.c:501 __nf_unregister_net_hook+0x21a/0x260\n[...]\n[524854.858848] CPU: 0 PID: 3386599 Comm: kworker/u32:2 Not tainted 6.9.0-rc3+ #365\n[524854.858869] Workqueue: netns cleanup_net\n[524854.858886] RIP: 0010:__nf_unregister_net_hook+0x21a/0x260\n[524854.858903] Code: 24 e8 aa 73 83 ff 48 63 43 1c 83 f8 01 0f 85 3d ff ff ff e8 98 d1 f0 ff 48 8b 3c 24 e8 8f 73 83 ff 48 63 43 1c e9 26 ff ff ff \u003c0f\u003e 0b 48 83 c4 18 48 c7 c7 00 68 e9 82 5b 5d 41 5c 41 5d 41 5e 41\n[524854.858914] RSP: 0018:ffff8881e36d79e0 EFLAGS: 00010246\n[524854.858926] RAX: 0000000000000000 RBX: ffff8881339ae790 RCX: ffffffff81ba524a\n[524854.858936] RDX: dffffc0000000000 RSI: 0000000000000008 RDI: ffff8881c8a16438\n[524854.858945] RBP: ffff8881c8a16438 R08: 0000000000000001 R09: ffffed103c6daf34\n[524854.858954] R10: ffff8881e36d79a7 R11: 0000000000000000 R12: 0000000000000005\n[524854.858962] R13: ffff8881c8a16000 R14: 0000000000000000 R15: ffff8881351b5a00\n[524854.858971] FS: 0000000000000000(0000) GS:ffff888390800000(0000) knlGS:0000000000000000\n[524854.858982] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[524854.858991] CR2: 00007fc9be0f16f4 CR3: 00000001437cc004 CR4: 00000000001706f0\n[524854.859000] Call Trace:\n[524854.859006] \u003cTASK\u003e\n[524854.859013] ? __warn+0x9f/0x1a0\n[524854.859027] ? __nf_unregister_net_hook+0x21a/0x260\n[524854.859044] ? report_bug+0x1b1/0x1e0\n[524854.859060] ? handle_bug+0x3c/0x70\n[524854.859071] ? exc_invalid_op+0x17/0x40\n[524854.859083] ? asm_exc_invalid_op+0x1a/0x20\n[524854.859100] ? __nf_unregister_net_hook+0x6a/0x260\n[524854.859116] ? __nf_unregister_net_hook+0x21a/0x260\n[524854.859135] nf_tables_netdev_event+0x337/0x390 [nf_tables]\n[524854.859304] ? __pfx_nf_tables_netdev_event+0x10/0x10 [nf_tables]\n[524854.859461] ? packet_notifier+0xb3/0x360\n[524854.859476] ? _raw_spin_unlock_irqrestore+0x11/0x40\n[524854.859489] ? dcbnl_netdevice_event+0x35/0x140\n[524854.859507] ? __pfx_nf_tables_netdev_event+0x10/0x10 [nf_tables]\n[524854.859661] notifier_call_chain+0x7d/0x140\n[524854.859677] unregister_netdevice_many_notify+0x5e1/0xae0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36005",
"url": "https://www.suse.com/security/cve/CVE-2024-36005"
},
{
"category": "external",
"summary": "SUSE Bug 1224539 for CVE-2024-36005",
"url": "https://bugzilla.suse.com/1224539"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36005"
},
{
"cve": "CVE-2024-36008",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36008"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: check for NULL idev in ip_route_use_hint()\n\nsyzbot was able to trigger a NULL deref in fib_validate_source()\nin an old tree [1].\n\nIt appears the bug exists in latest trees.\n\nAll calls to __in_dev_get_rcu() must be checked for a NULL result.\n\n[1]\ngeneral protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN\nKASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]\nCPU: 2 PID: 3257 Comm: syz-executor.3 Not tainted 5.10.0-syzkaller #0\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\n RIP: 0010:fib_validate_source+0xbf/0x15a0 net/ipv4/fib_frontend.c:425\nCode: 18 f2 f2 f2 f2 42 c7 44 20 23 f3 f3 f3 f3 48 89 44 24 78 42 c6 44 20 27 f3 e8 5d 88 48 fc 4c 89 e8 48 c1 e8 03 48 89 44 24 18 \u003c42\u003e 80 3c 20 00 74 08 4c 89 ef e8 d2 15 98 fc 48 89 5c 24 10 41 bf\nRSP: 0018:ffffc900015fee40 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: ffff88800f7a4000 RCX: ffff88800f4f90c0\nRDX: 0000000000000000 RSI: 0000000004001eac RDI: ffff8880160c64c0\nRBP: ffffc900015ff060 R08: 0000000000000000 R09: ffff88800f7a4000\nR10: 0000000000000002 R11: ffff88800f4f90c0 R12: dffffc0000000000\nR13: 0000000000000000 R14: 0000000000000000 R15: ffff88800f7a4000\nFS: 00007f938acfe6c0(0000) GS:ffff888058c00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f938acddd58 CR3: 000000001248e000 CR4: 0000000000352ef0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n ip_route_use_hint+0x410/0x9b0 net/ipv4/route.c:2231\n ip_rcv_finish_core+0x2c4/0x1a30 net/ipv4/ip_input.c:327\n ip_list_rcv_finish net/ipv4/ip_input.c:612 [inline]\n ip_sublist_rcv+0x3ed/0xe50 net/ipv4/ip_input.c:638\n ip_list_rcv+0x422/0x470 net/ipv4/ip_input.c:673\n __netif_receive_skb_list_ptype net/core/dev.c:5572 [inline]\n __netif_receive_skb_list_core+0x6b1/0x890 net/core/dev.c:5620\n __netif_receive_skb_list net/core/dev.c:5672 [inline]\n netif_receive_skb_list_internal+0x9f9/0xdc0 net/core/dev.c:5764\n netif_receive_skb_list+0x55/0x3e0 net/core/dev.c:5816\n xdp_recv_frames net/bpf/test_run.c:257 [inline]\n xdp_test_run_batch net/bpf/test_run.c:335 [inline]\n bpf_test_run_xdp_live+0x1818/0x1d00 net/bpf/test_run.c:363\n bpf_prog_test_run_xdp+0x81f/0x1170 net/bpf/test_run.c:1376\n bpf_prog_test_run+0x349/0x3c0 kernel/bpf/syscall.c:3736\n __sys_bpf+0x45c/0x710 kernel/bpf/syscall.c:5115\n __do_sys_bpf kernel/bpf/syscall.c:5201 [inline]\n __se_sys_bpf kernel/bpf/syscall.c:5199 [inline]\n __x64_sys_bpf+0x7c/0x90 kernel/bpf/syscall.c:5199",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36008",
"url": "https://www.suse.com/security/cve/CVE-2024-36008"
},
{
"category": "external",
"summary": "SUSE Bug 1224540 for CVE-2024-36008",
"url": "https://bugzilla.suse.com/1224540"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36008"
},
{
"cve": "CVE-2024-36010",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36010"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nigb: Fix string truncation warnings in igb_set_fw_version\n\nCommit 1978d3ead82c (\"intel: fix string truncation warnings\")\nfixes \u0027-Wformat-truncation=\u0027 warnings in igb_main.c by using kasprintf.\n\ndrivers/net/ethernet/intel/igb/igb_main.c:3092:53: warning:\u0027%d\u0027 directive output may be truncated writing between 1 and 5 bytes into a region of size between 1 and 13 [-Wformat-truncation=]\n 3092 | \"%d.%d, 0x%08x, %d.%d.%d\",\n | ^~\ndrivers/net/ethernet/intel/igb/igb_main.c:3092:34: note:directive argument in the range [0, 65535]\n 3092 | \"%d.%d, 0x%08x, %d.%d.%d\",\n | ^~~~~~~~~~~~~~~~~~~~~~~~~\ndrivers/net/ethernet/intel/igb/igb_main.c:3092:34: note:directive argument in the range [0, 65535]\ndrivers/net/ethernet/intel/igb/igb_main.c:3090:25: note:\u0027snprintf\u0027 output between 23 and 43 bytes into a destination of size 32\n\nkasprintf() returns a pointer to dynamically allocated memory\nwhich can be NULL upon failure.\n\nFix this warning by using a larger space for adapter-\u003efw_version,\nand then fall back and continue to use snprintf.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36010",
"url": "https://www.suse.com/security/cve/CVE-2024-36010"
},
{
"category": "external",
"summary": "SUSE Bug 1225594 for CVE-2024-36010",
"url": "https://bugzilla.suse.com/1225594"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36010"
},
{
"cve": "CVE-2024-36017",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36017"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrtnetlink: Correct nested IFLA_VF_VLAN_LIST attribute validation\n\nEach attribute inside a nested IFLA_VF_VLAN_LIST is assumed to be a\nstruct ifla_vf_vlan_info so the size of such attribute needs to be at least\nof sizeof(struct ifla_vf_vlan_info) which is 14 bytes.\nThe current size validation in do_setvfinfo is against NLA_HDRLEN (4 bytes)\nwhich is less than sizeof(struct ifla_vf_vlan_info) so this validation\nis not enough and a too small attribute might be cast to a\nstruct ifla_vf_vlan_info, this might result in an out of bands\nread access when accessing the saved (casted) entry in ivvl.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36017",
"url": "https://www.suse.com/security/cve/CVE-2024-36017"
},
{
"category": "external",
"summary": "SUSE Bug 1225681 for CVE-2024-36017",
"url": "https://bugzilla.suse.com/1225681"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36017"
},
{
"cve": "CVE-2024-36024",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36024"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Disable idle reallow as part of command/gpint execution\n\n[Why]\nWorkaroud for a race condition where DMCUB is in the process of\ncommitting to IPS1 during the handshake causing us to miss the\ntransition into IPS2 and touch the INBOX1 RPTR causing a HW hang.\n\n[How]\nDisable the reallow to ensure that we have enough of a gap between entry\nand exit and we\u0027re not seeing back-to-back wake_and_executes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36024",
"url": "https://www.suse.com/security/cve/CVE-2024-36024"
},
{
"category": "external",
"summary": "SUSE Bug 1225702 for CVE-2024-36024",
"url": "https://bugzilla.suse.com/1225702"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36024"
},
{
"cve": "CVE-2024-36281",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36281"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Use mlx5_ipsec_rx_status_destroy to correctly delete status rules\n\nrx_create no longer allocates a modify_hdr instance that needs to be\ncleaned up. The mlx5_modify_header_dealloc call will lead to a NULL pointer\ndereference. A leak in the rules also previously occurred since there are\nnow two rules populated related to status.\n\n BUG: kernel NULL pointer dereference, address: 0000000000000000\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 109907067 P4D 109907067 PUD 116890067 PMD 0\n Oops: 0000 [#1] SMP\n CPU: 1 PID: 484 Comm: ip Not tainted 6.9.0-rc2-rrameshbabu+ #254\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS Arch Linux 1.16.3-1-1 04/01/2014\n RIP: 0010:mlx5_modify_header_dealloc+0xd/0x70\n \u003csnip\u003e\n Call Trace:\n \u003cTASK\u003e\n ? show_regs+0x60/0x70\n ? __die+0x24/0x70\n ? page_fault_oops+0x15f/0x430\n ? free_to_partial_list.constprop.0+0x79/0x150\n ? do_user_addr_fault+0x2c9/0x5c0\n ? exc_page_fault+0x63/0x110\n ? asm_exc_page_fault+0x27/0x30\n ? mlx5_modify_header_dealloc+0xd/0x70\n rx_create+0x374/0x590\n rx_add_rule+0x3ad/0x500\n ? rx_add_rule+0x3ad/0x500\n ? mlx5_cmd_exec+0x2c/0x40\n ? mlx5_create_ipsec_obj+0xd6/0x200\n mlx5e_accel_ipsec_fs_add_rule+0x31/0xf0\n mlx5e_xfrm_add_state+0x426/0xc00\n \u003csnip\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36281",
"url": "https://www.suse.com/security/cve/CVE-2024-36281"
},
{
"category": "external",
"summary": "SUSE Bug 1226799 for CVE-2024-36281",
"url": "https://bugzilla.suse.com/1226799"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36281"
},
{
"cve": "CVE-2024-36477",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36477"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntpm_tis_spi: Account for SPI header when allocating TPM SPI xfer buffer\n\nThe TPM SPI transfer mechanism uses MAX_SPI_FRAMESIZE for computing the\nmaximum transfer length and the size of the transfer buffer. As such, it\ndoes not account for the 4 bytes of header that prepends the SPI data\nframe. This can result in out-of-bounds accesses and was confirmed with\nKASAN.\n\nIntroduce SPI_HDRSIZE to account for the header and use to allocate the\ntransfer buffer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36477",
"url": "https://www.suse.com/security/cve/CVE-2024-36477"
},
{
"category": "external",
"summary": "SUSE Bug 1226840 for CVE-2024-36477",
"url": "https://bugzilla.suse.com/1226840"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36477"
},
{
"cve": "CVE-2024-36478",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36478"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnull_blk: fix null-ptr-dereference while configuring \u0027power\u0027 and \u0027submit_queues\u0027\n\nWriting \u0027power\u0027 and \u0027submit_queues\u0027 concurrently will trigger kernel\npanic:\n\nTest script:\n\nmodprobe null_blk nr_devices=0\nmkdir -p /sys/kernel/config/nullb/nullb0\nwhile true; do echo 1 \u003e submit_queues; echo 4 \u003e submit_queues; done \u0026\nwhile true; do echo 1 \u003e power; echo 0 \u003e power; done\n\nTest result:\n\nBUG: kernel NULL pointer dereference, address: 0000000000000148\nOops: 0000 [#1] PREEMPT SMP\nRIP: 0010:__lock_acquire+0x41d/0x28f0\nCall Trace:\n \u003cTASK\u003e\n lock_acquire+0x121/0x450\n down_write+0x5f/0x1d0\n simple_recursive_removal+0x12f/0x5c0\n blk_mq_debugfs_unregister_hctxs+0x7c/0x100\n blk_mq_update_nr_hw_queues+0x4a3/0x720\n nullb_update_nr_hw_queues+0x71/0xf0 [null_blk]\n nullb_device_submit_queues_store+0x79/0xf0 [null_blk]\n configfs_write_iter+0x119/0x1e0\n vfs_write+0x326/0x730\n ksys_write+0x74/0x150\n\nThis is because del_gendisk() can concurrent with\nblk_mq_update_nr_hw_queues():\n\nnullb_device_power_store\tnullb_apply_submit_queues\n null_del_dev\n del_gendisk\n\t\t\t\t nullb_update_nr_hw_queues\n\t\t\t\t if (!dev-\u003enullb)\n\t\t\t\t // still set while gendisk is deleted\n\t\t\t\t return 0\n\t\t\t\t blk_mq_update_nr_hw_queues\n dev-\u003enullb = NULL\n\nFix this problem by resuing the global mutex to protect\nnullb_device_power_store() and nullb_update_nr_hw_queues() from configfs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36478",
"url": "https://www.suse.com/security/cve/CVE-2024-36478"
},
{
"category": "external",
"summary": "SUSE Bug 1226841 for CVE-2024-36478",
"url": "https://bugzilla.suse.com/1226841"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36478"
},
{
"cve": "CVE-2024-36479",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36479"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfpga: bridge: add owner module and take its refcount\n\nThe current implementation of the fpga bridge assumes that the low-level\nmodule registers a driver for the parent device and uses its owner pointer\nto take the module\u0027s refcount. This approach is problematic since it can\nlead to a null pointer dereference while attempting to get the bridge if\nthe parent device does not have a driver.\n\nTo address this problem, add a module owner pointer to the fpga_bridge\nstruct and use it to take the module\u0027s refcount. Modify the function for\nregistering a bridge to take an additional owner module parameter and\nrename it to avoid conflicts. Use the old function name for a helper macro\nthat automatically sets the module that registers the bridge as the owner.\nThis ensures compatibility with existing low-level control modules and\nreduces the chances of registering a bridge without setting the owner.\n\nAlso, update the documentation to keep it consistent with the new interface\nfor registering an fpga bridge.\n\nOther changes: opportunistically move put_device() from __fpga_bridge_get()\nto fpga_bridge_get() and of_fpga_bridge_get() to improve code clarity since\nthe bridge device is taken in these functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36479",
"url": "https://www.suse.com/security/cve/CVE-2024-36479"
},
{
"category": "external",
"summary": "SUSE Bug 1226949 for CVE-2024-36479",
"url": "https://bugzilla.suse.com/1226949"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36479"
},
{
"cve": "CVE-2024-36882",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36882"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: use memalloc_nofs_save() in page_cache_ra_order()\n\nSee commit f2c817bed58d (\"mm: use memalloc_nofs_save in readahead path\"),\nensure that page_cache_ra_order() do not attempt to reclaim file-backed\npages too, or it leads to a deadlock, found issue when test ext4 large\nfolio.\n\n INFO: task DataXceiver for:7494 blocked for more than 120 seconds.\n \"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\n task:DataXceiver for state:D stack:0 pid:7494 ppid:1 flags:0x00000200\n Call trace:\n __switch_to+0x14c/0x240\n __schedule+0x82c/0xdd0\n schedule+0x58/0xf0\n io_schedule+0x24/0xa0\n __folio_lock+0x130/0x300\n migrate_pages_batch+0x378/0x918\n migrate_pages+0x350/0x700\n compact_zone+0x63c/0xb38\n compact_zone_order+0xc0/0x118\n try_to_compact_pages+0xb0/0x280\n __alloc_pages_direct_compact+0x98/0x248\n __alloc_pages+0x510/0x1110\n alloc_pages+0x9c/0x130\n folio_alloc+0x20/0x78\n filemap_alloc_folio+0x8c/0x1b0\n page_cache_ra_order+0x174/0x308\n ondemand_readahead+0x1c8/0x2b8\n page_cache_async_ra+0x68/0xb8\n filemap_readahead.isra.0+0x64/0xa8\n filemap_get_pages+0x3fc/0x5b0\n filemap_splice_read+0xf4/0x280\n ext4_file_splice_read+0x2c/0x48 [ext4]\n vfs_splice_read.part.0+0xa8/0x118\n splice_direct_to_actor+0xbc/0x288\n do_splice_direct+0x9c/0x108\n do_sendfile+0x328/0x468\n __arm64_sys_sendfile64+0x8c/0x148\n invoke_syscall+0x4c/0x118\n el0_svc_common.constprop.0+0xc8/0xf0\n do_el0_svc+0x24/0x38\n el0_svc+0x4c/0x1f8\n el0t_64_sync_handler+0xc0/0xc8\n el0t_64_sync+0x188/0x190",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36882",
"url": "https://www.suse.com/security/cve/CVE-2024-36882"
},
{
"category": "external",
"summary": "SUSE Bug 1225723 for CVE-2024-36882",
"url": "https://bugzilla.suse.com/1225723"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36882"
},
{
"cve": "CVE-2024-36887",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36887"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ne1000e: change usleep_range to udelay in PHY mdic access\n\nThis is a partial revert of commit 6dbdd4de0362 (\"e1000e: Workaround\nfor sporadic MDI error on Meteor Lake systems\"). The referenced commit\nused usleep_range inside the PHY access routines, which are sometimes\ncalled from an atomic context. This can lead to a kernel panic in some\nscenarios, such as cable disconnection and reconnection on vPro systems.\n\nSolve this by changing the usleep_range calls back to udelay.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36887",
"url": "https://www.suse.com/security/cve/CVE-2024-36887"
},
{
"category": "external",
"summary": "SUSE Bug 1225731 for CVE-2024-36887",
"url": "https://bugzilla.suse.com/1225731"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36887"
},
{
"cve": "CVE-2024-36889",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36889"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: ensure snd_nxt is properly initialized on connect\n\nChristoph reported a splat hinting at a corrupted snd_una:\n\n WARNING: CPU: 1 PID: 38 at net/mptcp/protocol.c:1005 __mptcp_clean_una+0x4b3/0x620 net/mptcp/protocol.c:1005\n Modules linked in:\n CPU: 1 PID: 38 Comm: kworker/1:1 Not tainted 6.9.0-rc1-gbbeac67456c9 #59\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.11.0-2.el7 04/01/2014\n Workqueue: events mptcp_worker\n RIP: 0010:__mptcp_clean_una+0x4b3/0x620 net/mptcp/protocol.c:1005\n Code: be 06 01 00 00 bf 06 01 00 00 e8 a8 12 e7 fe e9 00 fe ff ff e8\n \t8e 1a e7 fe 0f b7 ab 3e 02 00 00 e9 d3 fd ff ff e8 7d 1a e7 fe\n \t\u003c0f\u003e 0b 4c 8b bb e0 05 00 00 e9 74 fc ff ff e8 6a 1a e7 fe 0f 0b e9\n RSP: 0018:ffffc9000013fd48 EFLAGS: 00010293\n RAX: 0000000000000000 RBX: ffff8881029bd280 RCX: ffffffff82382fe4\n RDX: ffff8881003cbd00 RSI: ffffffff823833c3 RDI: 0000000000000001\n RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000\n R10: 0000000000000000 R11: fefefefefefefeff R12: ffff888138ba8000\n R13: 0000000000000106 R14: ffff8881029bd908 R15: ffff888126560000\n FS: 0000000000000000(0000) GS:ffff88813bd00000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 00007f604a5dae38 CR3: 0000000101dac002 CR4: 0000000000170ef0\n Call Trace:\n \u003cTASK\u003e\n __mptcp_clean_una_wakeup net/mptcp/protocol.c:1055 [inline]\n mptcp_clean_una_wakeup net/mptcp/protocol.c:1062 [inline]\n __mptcp_retrans+0x7f/0x7e0 net/mptcp/protocol.c:2615\n mptcp_worker+0x434/0x740 net/mptcp/protocol.c:2767\n process_one_work+0x1e0/0x560 kernel/workqueue.c:3254\n process_scheduled_works kernel/workqueue.c:3335 [inline]\n worker_thread+0x3c7/0x640 kernel/workqueue.c:3416\n kthread+0x121/0x170 kernel/kthread.c:388\n ret_from_fork+0x44/0x50 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:243\n \u003c/TASK\u003e\n\nWhen fallback to TCP happens early on a client socket, snd_nxt\nis not yet initialized and any incoming ack will copy such value\ninto snd_una. If the mptcp worker (dumbly) tries mptcp-level\nre-injection after such ack, that would unconditionally trigger a send\nbuffer cleanup using \u0027bad\u0027 snd_una values.\n\nWe could easily disable re-injection for fallback sockets, but such\ndumb behavior already helped catching a few subtle issues and a very\nlow to zero impact in practice.\n\nInstead address the issue always initializing snd_nxt (and write_seq,\nfor consistency) at connect time.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36889",
"url": "https://www.suse.com/security/cve/CVE-2024-36889"
},
{
"category": "external",
"summary": "SUSE Bug 1225746 for CVE-2024-36889",
"url": "https://bugzilla.suse.com/1225746"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "low"
}
],
"title": "CVE-2024-36889"
},
{
"cve": "CVE-2024-36899",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36899"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpiolib: cdev: Fix use after free in lineinfo_changed_notify\n\nThe use-after-free issue occurs as follows: when the GPIO chip device file\nis being closed by invoking gpio_chrdev_release(), watched_lines is freed\nby bitmap_free(), but the unregistration of lineinfo_changed_nb notifier\nchain failed due to waiting write rwsem. Additionally, one of the GPIO\nchip\u0027s lines is also in the release process and holds the notifier chain\u0027s\nread rwsem. Consequently, a race condition leads to the use-after-free of\nwatched_lines.\n\nHere is the typical stack when issue happened:\n\n[free]\ngpio_chrdev_release()\n --\u003e bitmap_free(cdev-\u003ewatched_lines) \u003c-- freed\n --\u003e blocking_notifier_chain_unregister()\n --\u003e down_write(\u0026nh-\u003erwsem) \u003c-- waiting rwsem\n --\u003e __down_write_common()\n --\u003e rwsem_down_write_slowpath()\n --\u003e schedule_preempt_disabled()\n --\u003e schedule()\n\n[use]\nst54spi_gpio_dev_release()\n --\u003e gpio_free()\n --\u003e gpiod_free()\n --\u003e gpiod_free_commit()\n --\u003e gpiod_line_state_notify()\n --\u003e blocking_notifier_call_chain()\n --\u003e down_read(\u0026nh-\u003erwsem); \u003c-- held rwsem\n --\u003e notifier_call_chain()\n --\u003e lineinfo_changed_notify()\n --\u003e test_bit(xxxx, cdev-\u003ewatched_lines) \u003c-- use after free\n\nThe side effect of the use-after-free issue is that a GPIO line event is\nbeing generated for userspace where it shouldn\u0027t. However, since the chrdev\nis being closed, userspace won\u0027t have the chance to read that event anyway.\n\nTo fix the issue, call the bitmap_free() function after the unregistration\nof lineinfo_changed_nb notifier chain.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36899",
"url": "https://www.suse.com/security/cve/CVE-2024-36899"
},
{
"category": "external",
"summary": "SUSE Bug 1225737 for CVE-2024-36899",
"url": "https://bugzilla.suse.com/1225737"
},
{
"category": "external",
"summary": "SUSE Bug 1225739 for CVE-2024-36899",
"url": "https://bugzilla.suse.com/1225739"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36899"
},
{
"cve": "CVE-2024-36900",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36900"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: fix kernel crash when devlink reload during initialization\n\nThe devlink reload process will access the hardware resources,\nbut the register operation is done before the hardware is initialized.\nSo, processing the devlink reload during initialization may lead to kernel\ncrash.\n\nThis patch fixes this by registering the devlink after\nhardware initialization.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36900",
"url": "https://www.suse.com/security/cve/CVE-2024-36900"
},
{
"category": "external",
"summary": "SUSE Bug 1225726 for CVE-2024-36900",
"url": "https://bugzilla.suse.com/1225726"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36900"
},
{
"cve": "CVE-2024-36901",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36901"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: prevent NULL dereference in ip6_output()\n\nAccording to syzbot, there is a chance that ip6_dst_idev()\nreturns NULL in ip6_output(). Most places in IPv6 stack\ndeal with a NULL idev just fine, but not here.\n\nsyzbot reported:\n\ngeneral protection fault, probably for non-canonical address 0xdffffc00000000bc: 0000 [#1] PREEMPT SMP KASAN PTI\nKASAN: null-ptr-deref in range [0x00000000000005e0-0x00000000000005e7]\nCPU: 0 PID: 9775 Comm: syz-executor.4 Not tainted 6.9.0-rc5-syzkaller-00157-g6a30653b604a #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024\n RIP: 0010:ip6_output+0x231/0x3f0 net/ipv6/ip6_output.c:237\nCode: 3c 1e 00 49 89 df 74 08 4c 89 ef e8 19 58 db f7 48 8b 44 24 20 49 89 45 00 49 89 c5 48 8d 9d e0 05 00 00 48 89 d8 48 c1 e8 03 \u003c42\u003e 0f b6 04 38 84 c0 4c 8b 74 24 28 0f 85 61 01 00 00 8b 1b 31 ff\nRSP: 0018:ffffc9000927f0d8 EFLAGS: 00010202\nRAX: 00000000000000bc RBX: 00000000000005e0 RCX: 0000000000040000\nRDX: ffffc900131f9000 RSI: 0000000000004f47 RDI: 0000000000004f48\nRBP: 0000000000000000 R08: ffffffff8a1f0b9a R09: 1ffffffff1f51fad\nR10: dffffc0000000000 R11: fffffbfff1f51fae R12: ffff8880293ec8c0\nR13: ffff88805d7fc000 R14: 1ffff1100527d91a R15: dffffc0000000000\nFS: 00007f135c6856c0(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000020000080 CR3: 0000000064096000 CR4: 00000000003506f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n NF_HOOK include/linux/netfilter.h:314 [inline]\n ip6_xmit+0xefe/0x17f0 net/ipv6/ip6_output.c:358\n sctp_v6_xmit+0x9f2/0x13f0 net/sctp/ipv6.c:248\n sctp_packet_transmit+0x26ad/0x2ca0 net/sctp/output.c:653\n sctp_packet_singleton+0x22c/0x320 net/sctp/outqueue.c:783\n sctp_outq_flush_ctrl net/sctp/outqueue.c:914 [inline]\n sctp_outq_flush+0x6d5/0x3e20 net/sctp/outqueue.c:1212\n sctp_side_effects net/sctp/sm_sideeffect.c:1198 [inline]\n sctp_do_sm+0x59cc/0x60c0 net/sctp/sm_sideeffect.c:1169\n sctp_primitive_ASSOCIATE+0x95/0xc0 net/sctp/primitive.c:73\n __sctp_connect+0x9cd/0xe30 net/sctp/socket.c:1234\n sctp_connect net/sctp/socket.c:4819 [inline]\n sctp_inet_connect+0x149/0x1f0 net/sctp/socket.c:4834\n __sys_connect_file net/socket.c:2048 [inline]\n __sys_connect+0x2df/0x310 net/socket.c:2065\n __do_sys_connect net/socket.c:2075 [inline]\n __se_sys_connect net/socket.c:2072 [inline]\n __x64_sys_connect+0x7a/0x90 net/socket.c:2072\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf5/0x240 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36901",
"url": "https://www.suse.com/security/cve/CVE-2024-36901"
},
{
"category": "external",
"summary": "SUSE Bug 1225711 for CVE-2024-36901",
"url": "https://bugzilla.suse.com/1225711"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36901"
},
{
"cve": "CVE-2024-36902",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36902"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: fib6_rules: avoid possible NULL dereference in fib6_rule_action()\n\nsyzbot is able to trigger the following crash [1],\ncaused by unsafe ip6_dst_idev() use.\n\nIndeed ip6_dst_idev() can return NULL, and must always be checked.\n\n[1]\n\nOops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN PTI\nKASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]\nCPU: 0 PID: 31648 Comm: syz-executor.0 Not tainted 6.9.0-rc4-next-20240417-syzkaller #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024\n RIP: 0010:__fib6_rule_action net/ipv6/fib6_rules.c:237 [inline]\n RIP: 0010:fib6_rule_action+0x241/0x7b0 net/ipv6/fib6_rules.c:267\nCode: 02 00 00 49 8d 9f d8 00 00 00 48 89 d8 48 c1 e8 03 42 80 3c 20 00 74 08 48 89 df e8 f9 32 bf f7 48 8b 1b 48 89 d8 48 c1 e8 03 \u003c42\u003e 80 3c 20 00 74 08 48 89 df e8 e0 32 bf f7 4c 8b 03 48 89 ef 4c\nRSP: 0018:ffffc9000fc1f2f0 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: 0000000000000000 RCX: 1a772f98c8186700\nRDX: 0000000000000003 RSI: ffffffff8bcac4e0 RDI: ffffffff8c1f9760\nRBP: ffff8880673fb980 R08: ffffffff8fac15ef R09: 1ffffffff1f582bd\nR10: dffffc0000000000 R11: fffffbfff1f582be R12: dffffc0000000000\nR13: 0000000000000080 R14: ffff888076509000 R15: ffff88807a029a00\nFS: 00007f55e82ca6c0(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000001b31d23000 CR3: 0000000022b66000 CR4: 00000000003506f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n fib_rules_lookup+0x62c/0xdb0 net/core/fib_rules.c:317\n fib6_rule_lookup+0x1fd/0x790 net/ipv6/fib6_rules.c:108\n ip6_route_output_flags_noref net/ipv6/route.c:2637 [inline]\n ip6_route_output_flags+0x38e/0x610 net/ipv6/route.c:2649\n ip6_route_output include/net/ip6_route.h:93 [inline]\n ip6_dst_lookup_tail+0x189/0x11a0 net/ipv6/ip6_output.c:1120\n ip6_dst_lookup_flow+0xb9/0x180 net/ipv6/ip6_output.c:1250\n sctp_v6_get_dst+0x792/0x1e20 net/sctp/ipv6.c:326\n sctp_transport_route+0x12c/0x2e0 net/sctp/transport.c:455\n sctp_assoc_add_peer+0x614/0x15c0 net/sctp/associola.c:662\n sctp_connect_new_asoc+0x31d/0x6c0 net/sctp/socket.c:1099\n __sctp_connect+0x66d/0xe30 net/sctp/socket.c:1197\n sctp_connect net/sctp/socket.c:4819 [inline]\n sctp_inet_connect+0x149/0x1f0 net/sctp/socket.c:4834\n __sys_connect_file net/socket.c:2048 [inline]\n __sys_connect+0x2df/0x310 net/socket.c:2065\n __do_sys_connect net/socket.c:2075 [inline]\n __se_sys_connect net/socket.c:2072 [inline]\n __x64_sys_connect+0x7a/0x90 net/socket.c:2072\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf5/0x240 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36902",
"url": "https://www.suse.com/security/cve/CVE-2024-36902"
},
{
"category": "external",
"summary": "SUSE Bug 1225719 for CVE-2024-36902",
"url": "https://bugzilla.suse.com/1225719"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36902"
},
{
"cve": "CVE-2024-36903",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36903"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: Fix potential uninit-value access in __ip6_make_skb()\n\nAs it was done in commit fc1092f51567 (\"ipv4: Fix uninit-value access in\n__ip_make_skb()\") for IPv4, check FLOWI_FLAG_KNOWN_NH on fl6-\u003eflowi6_flags\ninstead of testing HDRINCL on the socket to avoid a race condition which\ncauses uninit-value access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36903",
"url": "https://www.suse.com/security/cve/CVE-2024-36903"
},
{
"category": "external",
"summary": "SUSE Bug 1225741 for CVE-2024-36903",
"url": "https://bugzilla.suse.com/1225741"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36903"
},
{
"cve": "CVE-2024-36904",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36904"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: Use refcount_inc_not_zero() in tcp_twsk_unique().\n\nAnderson Nascimento reported a use-after-free splat in tcp_twsk_unique()\nwith nice analysis.\n\nSince commit ec94c2696f0b (\"tcp/dccp: avoid one atomic operation for\ntimewait hashdance\"), inet_twsk_hashdance() sets TIME-WAIT socket\u0027s\nsk_refcnt after putting it into ehash and releasing the bucket lock.\n\nThus, there is a small race window where other threads could try to\nreuse the port during connect() and call sock_hold() in tcp_twsk_unique()\nfor the TIME-WAIT socket with zero refcnt.\n\nIf that happens, the refcnt taken by tcp_twsk_unique() is overwritten\nand sock_put() will cause underflow, triggering a real use-after-free\nsomewhere else.\n\nTo avoid the use-after-free, we need to use refcount_inc_not_zero() in\ntcp_twsk_unique() and give up on reusing the port if it returns false.\n\n[0]:\nrefcount_t: addition on 0; use-after-free.\nWARNING: CPU: 0 PID: 1039313 at lib/refcount.c:25 refcount_warn_saturate+0xe5/0x110\nCPU: 0 PID: 1039313 Comm: trigger Not tainted 6.8.6-200.fc39.x86_64 #1\nHardware name: VMware, Inc. VMware20,1/440BX Desktop Reference Platform, BIOS VMW201.00V.21805430.B64.2305221830 05/22/2023\nRIP: 0010:refcount_warn_saturate+0xe5/0x110\nCode: 42 8e ff 0f 0b c3 cc cc cc cc 80 3d aa 13 ea 01 00 0f 85 5e ff ff ff 48 c7 c7 f8 8e b7 82 c6 05 96 13 ea 01 01 e8 7b 42 8e ff \u003c0f\u003e 0b c3 cc cc cc cc 48 c7 c7 50 8f b7 82 c6 05 7a 13 ea 01 01 e8\nRSP: 0018:ffffc90006b43b60 EFLAGS: 00010282\nRAX: 0000000000000000 RBX: ffff888009bb3ef0 RCX: 0000000000000027\nRDX: ffff88807be218c8 RSI: 0000000000000001 RDI: ffff88807be218c0\nRBP: 0000000000069d70 R08: 0000000000000000 R09: ffffc90006b439f0\nR10: ffffc90006b439e8 R11: 0000000000000003 R12: ffff8880029ede84\nR13: 0000000000004e20 R14: ffffffff84356dc0 R15: ffff888009bb3ef0\nFS: 00007f62c10926c0(0000) GS:ffff88807be00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000020ccb000 CR3: 000000004628c005 CR4: 0000000000f70ef0\nPKRU: 55555554\nCall Trace:\n \u003cTASK\u003e\n ? refcount_warn_saturate+0xe5/0x110\n ? __warn+0x81/0x130\n ? refcount_warn_saturate+0xe5/0x110\n ? report_bug+0x171/0x1a0\n ? refcount_warn_saturate+0xe5/0x110\n ? handle_bug+0x3c/0x80\n ? exc_invalid_op+0x17/0x70\n ? asm_exc_invalid_op+0x1a/0x20\n ? refcount_warn_saturate+0xe5/0x110\n tcp_twsk_unique+0x186/0x190\n __inet_check_established+0x176/0x2d0\n __inet_hash_connect+0x74/0x7d0\n ? __pfx___inet_check_established+0x10/0x10\n tcp_v4_connect+0x278/0x530\n __inet_stream_connect+0x10f/0x3d0\n inet_stream_connect+0x3a/0x60\n __sys_connect+0xa8/0xd0\n __x64_sys_connect+0x18/0x20\n do_syscall_64+0x83/0x170\n entry_SYSCALL_64_after_hwframe+0x78/0x80\nRIP: 0033:0x7f62c11a885d\nCode: ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d a3 45 0c 00 f7 d8 64 89 01 48\nRSP: 002b:00007f62c1091e58 EFLAGS: 00000296 ORIG_RAX: 000000000000002a\nRAX: ffffffffffffffda RBX: 0000000020ccb004 RCX: 00007f62c11a885d\nRDX: 0000000000000010 RSI: 0000000020ccb000 RDI: 0000000000000003\nRBP: 00007f62c1091e90 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000296 R12: 00007f62c10926c0\nR13: ffffffffffffff88 R14: 0000000000000000 R15: 00007ffe237885b0\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36904",
"url": "https://www.suse.com/security/cve/CVE-2024-36904"
},
{
"category": "external",
"summary": "SUSE Bug 1225732 for CVE-2024-36904",
"url": "https://bugzilla.suse.com/1225732"
},
{
"category": "external",
"summary": "SUSE Bug 1225733 for CVE-2024-36904",
"url": "https://bugzilla.suse.com/1225733"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36904"
},
{
"cve": "CVE-2024-36909",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36909"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nDrivers: hv: vmbus: Don\u0027t free ring buffers that couldn\u0027t be re-encrypted\n\nIn CoCo VMs it is possible for the untrusted host to cause\nset_memory_encrypted() or set_memory_decrypted() to fail such that an\nerror is returned and the resulting memory is shared. Callers need to\ntake care to handle these errors to avoid returning decrypted (shared)\nmemory to the page allocator, which could lead to functional or security\nissues.\n\nThe VMBus ring buffer code could free decrypted/shared pages if\nset_memory_decrypted() fails. Check the decrypted field in the struct\nvmbus_gpadl for the ring buffers to decide whether to free the memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36909",
"url": "https://www.suse.com/security/cve/CVE-2024-36909"
},
{
"category": "external",
"summary": "SUSE Bug 1225744 for CVE-2024-36909",
"url": "https://bugzilla.suse.com/1225744"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36909"
},
{
"cve": "CVE-2024-36910",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36910"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nuio_hv_generic: Don\u0027t free decrypted memory\n\nIn CoCo VMs it is possible for the untrusted host to cause\nset_memory_encrypted() or set_memory_decrypted() to fail such that an\nerror is returned and the resulting memory is shared. Callers need to\ntake care to handle these errors to avoid returning decrypted (shared)\nmemory to the page allocator, which could lead to functional or security\nissues.\n\nThe VMBus device UIO driver could free decrypted/shared pages if\nset_memory_decrypted() fails. Check the decrypted field in the gpadl\nto decide whether to free the memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36910",
"url": "https://www.suse.com/security/cve/CVE-2024-36910"
},
{
"category": "external",
"summary": "SUSE Bug 1225717 for CVE-2024-36910",
"url": "https://bugzilla.suse.com/1225717"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36910"
},
{
"cve": "CVE-2024-36911",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36911"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhv_netvsc: Don\u0027t free decrypted memory\n\nIn CoCo VMs it is possible for the untrusted host to cause\nset_memory_encrypted() or set_memory_decrypted() to fail such that an\nerror is returned and the resulting memory is shared. Callers need to\ntake care to handle these errors to avoid returning decrypted (shared)\nmemory to the page allocator, which could lead to functional or security\nissues.\n\nThe netvsc driver could free decrypted/shared pages if\nset_memory_decrypted() fails. Check the decrypted field in the gpadl\nto decide whether to free the memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36911",
"url": "https://www.suse.com/security/cve/CVE-2024-36911"
},
{
"category": "external",
"summary": "SUSE Bug 1225745 for CVE-2024-36911",
"url": "https://bugzilla.suse.com/1225745"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36911"
},
{
"cve": "CVE-2024-36912",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36912"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nDrivers: hv: vmbus: Track decrypted status in vmbus_gpadl\n\nIn CoCo VMs it is possible for the untrusted host to cause\nset_memory_encrypted() or set_memory_decrypted() to fail such that an\nerror is returned and the resulting memory is shared. Callers need to\ntake care to handle these errors to avoid returning decrypted (shared)\nmemory to the page allocator, which could lead to functional or security\nissues.\n\nIn order to make sure callers of vmbus_establish_gpadl() and\nvmbus_teardown_gpadl() don\u0027t return decrypted/shared pages to\nallocators, add a field in struct vmbus_gpadl to keep track of the\ndecryption status of the buffers. This will allow the callers to\nknow if they should free or leak the pages.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36912",
"url": "https://www.suse.com/security/cve/CVE-2024-36912"
},
{
"category": "external",
"summary": "SUSE Bug 1225752 for CVE-2024-36912",
"url": "https://bugzilla.suse.com/1225752"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36912"
},
{
"cve": "CVE-2024-36913",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36913"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nDrivers: hv: vmbus: Leak pages if set_memory_encrypted() fails\n\nIn CoCo VMs it is possible for the untrusted host to cause\nset_memory_encrypted() or set_memory_decrypted() to fail such that an\nerror is returned and the resulting memory is shared. Callers need to\ntake care to handle these errors to avoid returning decrypted (shared)\nmemory to the page allocator, which could lead to functional or security\nissues.\n\nVMBus code could free decrypted pages if set_memory_encrypted()/decrypted()\nfails. Leak the pages if this happens.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36913",
"url": "https://www.suse.com/security/cve/CVE-2024-36913"
},
{
"category": "external",
"summary": "SUSE Bug 1225753 for CVE-2024-36913",
"url": "https://bugzilla.suse.com/1225753"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36913"
},
{
"cve": "CVE-2024-36914",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36914"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Skip on writeback when it\u0027s not applicable\n\n[WHY]\ndynamic memory safety error detector (KASAN) catches and generates error\nmessages \"BUG: KASAN: slab-out-of-bounds\" as writeback connector does not\nsupport certain features which are not initialized.\n\n[HOW]\nSkip them when connector type is DRM_MODE_CONNECTOR_WRITEBACK.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36914",
"url": "https://www.suse.com/security/cve/CVE-2024-36914"
},
{
"category": "external",
"summary": "SUSE Bug 1225757 for CVE-2024-36914",
"url": "https://bugzilla.suse.com/1225757"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36914"
},
{
"cve": "CVE-2024-36915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36915"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfc: llcp: fix nfc_llcp_setsockopt() unsafe copies\n\nsyzbot reported unsafe calls to copy_from_sockptr() [1]\n\nUse copy_safe_from_sockptr() instead.\n\n[1]\n\nBUG: KASAN: slab-out-of-bounds in copy_from_sockptr_offset include/linux/sockptr.h:49 [inline]\n BUG: KASAN: slab-out-of-bounds in copy_from_sockptr include/linux/sockptr.h:55 [inline]\n BUG: KASAN: slab-out-of-bounds in nfc_llcp_setsockopt+0x6c2/0x850 net/nfc/llcp_sock.c:255\nRead of size 4 at addr ffff88801caa1ec3 by task syz-executor459/5078\n\nCPU: 0 PID: 5078 Comm: syz-executor459 Not tainted 6.8.0-syzkaller-08951-gfe46a7dd189e #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:114\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n copy_from_sockptr_offset include/linux/sockptr.h:49 [inline]\n copy_from_sockptr include/linux/sockptr.h:55 [inline]\n nfc_llcp_setsockopt+0x6c2/0x850 net/nfc/llcp_sock.c:255\n do_sock_setsockopt+0x3b1/0x720 net/socket.c:2311\n __sys_setsockopt+0x1ae/0x250 net/socket.c:2334\n __do_sys_setsockopt net/socket.c:2343 [inline]\n __se_sys_setsockopt net/socket.c:2340 [inline]\n __x64_sys_setsockopt+0xb5/0xd0 net/socket.c:2340\n do_syscall_64+0xfd/0x240\n entry_SYSCALL_64_after_hwframe+0x6d/0x75\nRIP: 0033:0x7f7fac07fd89\nCode: 28 00 00 00 75 05 48 83 c4 28 c3 e8 91 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007fff660eb788 EFLAGS: 00000246 ORIG_RAX: 0000000000000036\nRAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7fac07fd89\nRDX: 0000000000000000 RSI: 0000000000000118 RDI: 0000000000000004\nRBP: 0000000000000000 R08: 0000000000000002 R09: 0000000000000000\nR10: 0000000020000a80 R11: 0000000000000246 R12: 0000000000000000\nR13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36915",
"url": "https://www.suse.com/security/cve/CVE-2024-36915"
},
{
"category": "external",
"summary": "SUSE Bug 1225758 for CVE-2024-36915",
"url": "https://bugzilla.suse.com/1225758"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36915"
},
{
"cve": "CVE-2024-36916",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36916"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-iocost: avoid out of bounds shift\n\nUBSAN catches undefined behavior in blk-iocost, where sometimes\niocg-\u003edelay is shifted right by a number that is too large,\nresulting in undefined behavior on some architectures.\n\n[ 186.556576] ------------[ cut here ]------------\nUBSAN: shift-out-of-bounds in block/blk-iocost.c:1366:23\nshift exponent 64 is too large for 64-bit type \u0027u64\u0027 (aka \u0027unsigned long long\u0027)\nCPU: 16 PID: 0 Comm: swapper/16 Tainted: G S E N 6.9.0-0_fbk700_debug_rc2_kbuilder_0_gc85af715cac0 #1\nHardware name: Quanta Twin Lakes MP/Twin Lakes Passive MP, BIOS F09_3A23 12/08/2020\nCall Trace:\n \u003cIRQ\u003e\n dump_stack_lvl+0x8f/0xe0\n __ubsan_handle_shift_out_of_bounds+0x22c/0x280\n iocg_kick_delay+0x30b/0x310\n ioc_timer_fn+0x2fb/0x1f80\n __run_timer_base+0x1b6/0x250\n...\n\nAvoid that undefined behavior by simply taking the\n\"delay = 0\" branch if the shift is too large.\n\nI am not sure what the symptoms of an undefined value\ndelay will be, but I suspect it could be more than a\nlittle annoying to debug.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36916",
"url": "https://www.suse.com/security/cve/CVE-2024-36916"
},
{
"category": "external",
"summary": "SUSE Bug 1225759 for CVE-2024-36916",
"url": "https://bugzilla.suse.com/1225759"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36916"
},
{
"cve": "CVE-2024-36917",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36917"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock: fix overflow in blk_ioctl_discard()\n\nThere is no check for overflow of \u0027start + len\u0027 in blk_ioctl_discard().\nHung task occurs if submit an discard ioctl with the following param:\n start = 0x80000000000ff000, len = 0x8000000000fff000;\nAdd the overflow validation now.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36917",
"url": "https://www.suse.com/security/cve/CVE-2024-36917"
},
{
"category": "external",
"summary": "SUSE Bug 1225770 for CVE-2024-36917",
"url": "https://bugzilla.suse.com/1225770"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36917"
},
{
"cve": "CVE-2024-36919",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36919"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: bnx2fc: Remove spin_lock_bh while releasing resources after upload\n\nThe session resources are used by FW and driver when session is offloaded,\nonce session is uploaded these resources are not used. The lock is not\nrequired as these fields won\u0027t be used any longer. The offload and upload\ncalls are sequential, hence lock is not required.\n\nThis will suppress following BUG_ON():\n\n[ 449.843143] ------------[ cut here ]------------\n[ 449.848302] kernel BUG at mm/vmalloc.c:2727!\n[ 449.853072] invalid opcode: 0000 [#1] PREEMPT SMP PTI\n[ 449.858712] CPU: 5 PID: 1996 Comm: kworker/u24:2 Not tainted 5.14.0-118.el9.x86_64 #1\nRebooting.\n[ 449.867454] Hardware name: Dell Inc. PowerEdge R730/0WCJNT, BIOS 2.3.4 11/08/2016\n[ 449.876966] Workqueue: fc_rport_eq fc_rport_work [libfc]\n[ 449.882910] RIP: 0010:vunmap+0x2e/0x30\n[ 449.887098] Code: 00 65 8b 05 14 a2 f0 4a a9 00 ff ff 00 75 1b 55 48 89 fd e8 34 36 79 00 48 85 ed 74 0b 48 89 ef 31 f6 5d e9 14 fc ff ff 5d c3 \u003c0f\u003e 0b 0f 1f 44 00 00 41 57 41 56 49 89 ce 41 55 49 89 fd 41 54 41\n[ 449.908054] RSP: 0018:ffffb83d878b3d68 EFLAGS: 00010206\n[ 449.913887] RAX: 0000000080000201 RBX: ffff8f4355133550 RCX: 000000000d400005\n[ 449.921843] RDX: 0000000000000001 RSI: 0000000000001000 RDI: ffffb83da53f5000\n[ 449.929808] RBP: ffff8f4ac6675800 R08: ffffb83d878b3d30 R09: 00000000000efbdf\n[ 449.937774] R10: 0000000000000003 R11: ffff8f434573e000 R12: 0000000000001000\n[ 449.945736] R13: 0000000000001000 R14: ffffb83da53f5000 R15: ffff8f43d4ea3ae0\n[ 449.953701] FS: 0000000000000000(0000) GS:ffff8f529fc80000(0000) knlGS:0000000000000000\n[ 449.962732] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 449.969138] CR2: 00007f8cf993e150 CR3: 0000000efbe10003 CR4: 00000000003706e0\n[ 449.977102] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 449.985065] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 449.993028] Call Trace:\n[ 449.995756] __iommu_dma_free+0x96/0x100\n[ 450.000139] bnx2fc_free_session_resc+0x67/0x240 [bnx2fc]\n[ 450.006171] bnx2fc_upload_session+0xce/0x100 [bnx2fc]\n[ 450.011910] bnx2fc_rport_event_handler+0x9f/0x240 [bnx2fc]\n[ 450.018136] fc_rport_work+0x103/0x5b0 [libfc]\n[ 450.023103] process_one_work+0x1e8/0x3c0\n[ 450.027581] worker_thread+0x50/0x3b0\n[ 450.031669] ? rescuer_thread+0x370/0x370\n[ 450.036143] kthread+0x149/0x170\n[ 450.039744] ? set_kthread_struct+0x40/0x40\n[ 450.044411] ret_from_fork+0x22/0x30\n[ 450.048404] Modules linked in: vfat msdos fat xfs nfs_layout_nfsv41_files rpcsec_gss_krb5 auth_rpcgss nfsv4 dns_resolver dm_service_time qedf qed crc8 bnx2fc libfcoe libfc scsi_transport_fc intel_rapl_msr intel_rapl_common x86_pkg_temp_thermal intel_powerclamp dcdbas rapl intel_cstate intel_uncore mei_me pcspkr mei ipmi_ssif lpc_ich ipmi_si fuse zram ext4 mbcache jbd2 loop nfsv3 nfs_acl nfs lockd grace fscache netfs irdma ice sd_mod t10_pi sg ib_uverbs ib_core 8021q garp mrp stp llc mgag200 i2c_algo_bit drm_kms_helper syscopyarea sysfillrect sysimgblt mxm_wmi fb_sys_fops cec crct10dif_pclmul ahci crc32_pclmul bnx2x drm ghash_clmulni_intel libahci rfkill i40e libata megaraid_sas mdio wmi sunrpc lrw dm_crypt dm_round_robin dm_multipath dm_snapshot dm_bufio dm_mirror dm_region_hash dm_log dm_zero dm_mod linear raid10 raid456 async_raid6_recov async_memcpy async_pq async_xor async_tx raid6_pq libcrc32c crc32c_intel raid1 raid0 iscsi_ibft squashfs be2iscsi bnx2i cnic uio cxgb4i cxgb4 tls\n[ 450.048497] libcxgbi libcxgb qla4xxx iscsi_boot_sysfs iscsi_tcp libiscsi_tcp libiscsi scsi_transport_iscsi edd ipmi_devintf ipmi_msghandler\n[ 450.159753] ---[ end trace 712de2c57c64abc8 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36919",
"url": "https://www.suse.com/security/cve/CVE-2024-36919"
},
{
"category": "external",
"summary": "SUSE Bug 1225767 for CVE-2024-36919",
"url": "https://bugzilla.suse.com/1225767"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36919"
},
{
"cve": "CVE-2024-36922",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36922"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlwifi: read txq-\u003eread_ptr under lock\n\nIf we read txq-\u003eread_ptr without lock, we can read the same\nvalue twice, then obtain the lock, and reclaim from there\nto two different places, but crucially reclaim the same\nentry twice, resulting in the WARN_ONCE() a little later.\nFix that by reading txq-\u003eread_ptr under lock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36922",
"url": "https://www.suse.com/security/cve/CVE-2024-36922"
},
{
"category": "external",
"summary": "SUSE Bug 1225805 for CVE-2024-36922",
"url": "https://bugzilla.suse.com/1225805"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36922"
},
{
"cve": "CVE-2024-36923",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36923"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/9p: fix uninitialized values during inode evict\n\nIf an iget fails due to not being able to retrieve information\nfrom the server then the inode structure is only partially\ninitialized. When the inode gets evicted, references to\nuninitialized structures (like fscache cookies) were being\nmade.\n\nThis patch checks for a bad_inode before doing anything other\nthan clearing the inode from the cache. Since the inode is\nbad, it shouldn\u0027t have any state associated with it that needs\nto be written back (and there really isn\u0027t a way to complete\nthose anyways).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36923",
"url": "https://www.suse.com/security/cve/CVE-2024-36923"
},
{
"category": "external",
"summary": "SUSE Bug 1225815 for CVE-2024-36923",
"url": "https://bugzilla.suse.com/1225815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36923"
},
{
"cve": "CVE-2024-36924",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36924"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: lpfc: Release hbalock before calling lpfc_worker_wake_up()\n\nlpfc_worker_wake_up() calls the lpfc_work_done() routine, which takes the\nhbalock. Thus, lpfc_worker_wake_up() should not be called while holding the\nhbalock to avoid potential deadlock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36924",
"url": "https://www.suse.com/security/cve/CVE-2024-36924"
},
{
"category": "external",
"summary": "SUSE Bug 1225820 for CVE-2024-36924",
"url": "https://bugzilla.suse.com/1225820"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36924"
},
{
"cve": "CVE-2024-36926",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36926"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/pseries/iommu: LPAR panics during boot up with a frozen PE\n\nAt the time of LPAR boot up, partition firmware provides Open Firmware\nproperty ibm,dma-window for the PE. This property is provided on the PCI\nbus the PE is attached to.\n\nThere are execptions where the partition firmware might not provide this\nproperty for the PE at the time of LPAR boot up. One of the scenario is\nwhere the firmware has frozen the PE due to some error condition. This\nPE is frozen for 24 hours or unless the whole system is reinitialized.\n\nWithin this time frame, if the LPAR is booted, the frozen PE will be\npresented to the LPAR but ibm,dma-window property could be missing.\n\nToday, under these circumstances, the LPAR oopses with NULL pointer\ndereference, when configuring the PCI bus the PE is attached to.\n\n BUG: Kernel NULL pointer dereference on read at 0x000000c8\n Faulting instruction address: 0xc0000000001024c0\n Oops: Kernel access of bad area, sig: 7 [#1]\n LE PAGE_SIZE=64K MMU=Radix SMP NR_CPUS=2048 NUMA pSeries\n Modules linked in:\n Supported: Yes\n CPU: 0 PID: 1 Comm: swapper/0 Not tainted 6.4.0-150600.9-default #1\n Hardware name: IBM,9043-MRX POWER10 (raw) 0x800200 0xf000006 of:IBM,FW1060.00 (NM1060_023) hv:phyp pSeries\n NIP: c0000000001024c0 LR: c0000000001024b0 CTR: c000000000102450\n REGS: c0000000037db5c0 TRAP: 0300 Not tainted (6.4.0-150600.9-default)\n MSR: 8000000002009033 \u003cSF,VEC,EE,ME,IR,DR,RI,LE\u003e CR: 28000822 XER: 00000000\n CFAR: c00000000010254c DAR: 00000000000000c8 DSISR: 00080000 IRQMASK: 0\n ...\n NIP [c0000000001024c0] pci_dma_bus_setup_pSeriesLP+0x70/0x2a0\n LR [c0000000001024b0] pci_dma_bus_setup_pSeriesLP+0x60/0x2a0\n Call Trace:\n pci_dma_bus_setup_pSeriesLP+0x60/0x2a0 (unreliable)\n pcibios_setup_bus_self+0x1c0/0x370\n __of_scan_bus+0x2f8/0x330\n pcibios_scan_phb+0x280/0x3d0\n pcibios_init+0x88/0x12c\n do_one_initcall+0x60/0x320\n kernel_init_freeable+0x344/0x3e4\n kernel_init+0x34/0x1d0\n ret_from_kernel_user_thread+0x14/0x1c",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36926",
"url": "https://www.suse.com/security/cve/CVE-2024-36926"
},
{
"category": "external",
"summary": "SUSE Bug 1225829 for CVE-2024-36926",
"url": "https://bugzilla.suse.com/1225829"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36926"
},
{
"cve": "CVE-2024-36930",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36930"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: fix null pointer dereference within spi_sync\n\nIf spi_sync() is called with the non-empty queue and the same spi_message\nis then reused, the complete callback for the message remains set while\nthe context is cleared, leading to a null pointer dereference when the\ncallback is invoked from spi_finalize_current_message().\n\nWith function inlining disabled, the call stack might look like this:\n\n _raw_spin_lock_irqsave from complete_with_flags+0x18/0x58\n complete_with_flags from spi_complete+0x8/0xc\n spi_complete from spi_finalize_current_message+0xec/0x184\n spi_finalize_current_message from spi_transfer_one_message+0x2a8/0x474\n spi_transfer_one_message from __spi_pump_transfer_message+0x104/0x230\n __spi_pump_transfer_message from __spi_transfer_message_noqueue+0x30/0xc4\n __spi_transfer_message_noqueue from __spi_sync+0x204/0x248\n __spi_sync from spi_sync+0x24/0x3c\n spi_sync from mcp251xfd_regmap_crc_read+0x124/0x28c [mcp251xfd]\n mcp251xfd_regmap_crc_read [mcp251xfd] from _regmap_raw_read+0xf8/0x154\n _regmap_raw_read from _regmap_bus_read+0x44/0x70\n _regmap_bus_read from _regmap_read+0x60/0xd8\n _regmap_read from regmap_read+0x3c/0x5c\n regmap_read from mcp251xfd_alloc_can_err_skb+0x1c/0x54 [mcp251xfd]\n mcp251xfd_alloc_can_err_skb [mcp251xfd] from mcp251xfd_irq+0x194/0xe70 [mcp251xfd]\n mcp251xfd_irq [mcp251xfd] from irq_thread_fn+0x1c/0x78\n irq_thread_fn from irq_thread+0x118/0x1f4\n irq_thread from kthread+0xd8/0xf4\n kthread from ret_from_fork+0x14/0x28\n\nFix this by also setting message-\u003ecomplete to NULL when the transfer is\ncomplete.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36930",
"url": "https://www.suse.com/security/cve/CVE-2024-36930"
},
{
"category": "external",
"summary": "SUSE Bug 1225830 for CVE-2024-36930",
"url": "https://bugzilla.suse.com/1225830"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36930"
},
{
"cve": "CVE-2024-36934",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36934"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbna: ensure the copied buf is NUL terminated\n\nCurrently, we allocate a nbytes-sized kernel buffer and copy nbytes from\nuserspace to that buffer. Later, we use sscanf on this buffer but we don\u0027t\nensure that the string is terminated inside the buffer, this can lead to\nOOB read when using sscanf. Fix this issue by using memdup_user_nul\ninstead of memdup_user.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36934",
"url": "https://www.suse.com/security/cve/CVE-2024-36934"
},
{
"category": "external",
"summary": "SUSE Bug 1225760 for CVE-2024-36934",
"url": "https://bugzilla.suse.com/1225760"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36934"
},
{
"cve": "CVE-2024-36935",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36935"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: ensure the copied buf is NUL terminated\n\nCurrently, we allocate a count-sized kernel buffer and copy count bytes\nfrom userspace to that buffer. Later, we use sscanf on this buffer but we\ndon\u0027t ensure that the string is terminated inside the buffer, this can lead\nto OOB read when using sscanf. Fix this issue by using memdup_user_nul\ninstead of memdup_user.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36935",
"url": "https://www.suse.com/security/cve/CVE-2024-36935"
},
{
"category": "external",
"summary": "SUSE Bug 1225763 for CVE-2024-36935",
"url": "https://bugzilla.suse.com/1225763"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36935"
},
{
"cve": "CVE-2024-36937",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36937"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxdp: use flags field to disambiguate broadcast redirect\n\nWhen redirecting a packet using XDP, the bpf_redirect_map() helper will set\nup the redirect destination information in struct bpf_redirect_info (using\nthe __bpf_xdp_redirect_map() helper function), and the xdp_do_redirect()\nfunction will read this information after the XDP program returns and pass\nthe frame on to the right redirect destination.\n\nWhen using the BPF_F_BROADCAST flag to do multicast redirect to a whole\nmap, __bpf_xdp_redirect_map() sets the \u0027map\u0027 pointer in struct\nbpf_redirect_info to point to the destination map to be broadcast. And\nxdp_do_redirect() reacts to the value of this map pointer to decide whether\nit\u0027s dealing with a broadcast or a single-value redirect. However, if the\ndestination map is being destroyed before xdp_do_redirect() is called, the\nmap pointer will be cleared out (by bpf_clear_redirect_map()) without\nwaiting for any XDP programs to stop running. This causes xdp_do_redirect()\nto think that the redirect was to a single target, but the target pointer\nis also NULL (since broadcast redirects don\u0027t have a single target), so\nthis causes a crash when a NULL pointer is passed to dev_map_enqueue().\n\nTo fix this, change xdp_do_redirect() to react directly to the presence of\nthe BPF_F_BROADCAST flag in the \u0027flags\u0027 value in struct bpf_redirect_info\nto disambiguate between a single-target and a broadcast redirect. And only\nread the \u0027map\u0027 pointer if the broadcast flag is set, aborting if that has\nbeen cleared out in the meantime. This prevents the crash, while keeping\nthe atomic (cmpxchg-based) clearing of the map pointer itself, and without\nadding any more checks in the non-broadcast fast path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36937",
"url": "https://www.suse.com/security/cve/CVE-2024-36937"
},
{
"category": "external",
"summary": "SUSE Bug 1225834 for CVE-2024-36937",
"url": "https://bugzilla.suse.com/1225834"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36937"
},
{
"cve": "CVE-2024-36938",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36938"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf, skmsg: Fix NULL pointer dereference in sk_psock_skb_ingress_enqueue\n\nFix NULL pointer data-races in sk_psock_skb_ingress_enqueue() which\nsyzbot reported [1].\n\n[1]\nBUG: KCSAN: data-race in sk_psock_drop / sk_psock_skb_ingress_enqueue\n\nwrite to 0xffff88814b3278b8 of 8 bytes by task 10724 on cpu 1:\n sk_psock_stop_verdict net/core/skmsg.c:1257 [inline]\n sk_psock_drop+0x13e/0x1f0 net/core/skmsg.c:843\n sk_psock_put include/linux/skmsg.h:459 [inline]\n sock_map_close+0x1a7/0x260 net/core/sock_map.c:1648\n unix_release+0x4b/0x80 net/unix/af_unix.c:1048\n __sock_release net/socket.c:659 [inline]\n sock_close+0x68/0x150 net/socket.c:1421\n __fput+0x2c1/0x660 fs/file_table.c:422\n __fput_sync+0x44/0x60 fs/file_table.c:507\n __do_sys_close fs/open.c:1556 [inline]\n __se_sys_close+0x101/0x1b0 fs/open.c:1541\n __x64_sys_close+0x1f/0x30 fs/open.c:1541\n do_syscall_64+0xd3/0x1d0\n entry_SYSCALL_64_after_hwframe+0x6d/0x75\n\nread to 0xffff88814b3278b8 of 8 bytes by task 10713 on cpu 0:\n sk_psock_data_ready include/linux/skmsg.h:464 [inline]\n sk_psock_skb_ingress_enqueue+0x32d/0x390 net/core/skmsg.c:555\n sk_psock_skb_ingress_self+0x185/0x1e0 net/core/skmsg.c:606\n sk_psock_verdict_apply net/core/skmsg.c:1008 [inline]\n sk_psock_verdict_recv+0x3e4/0x4a0 net/core/skmsg.c:1202\n unix_read_skb net/unix/af_unix.c:2546 [inline]\n unix_stream_read_skb+0x9e/0xf0 net/unix/af_unix.c:2682\n sk_psock_verdict_data_ready+0x77/0x220 net/core/skmsg.c:1223\n unix_stream_sendmsg+0x527/0x860 net/unix/af_unix.c:2339\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x140/0x180 net/socket.c:745\n ____sys_sendmsg+0x312/0x410 net/socket.c:2584\n ___sys_sendmsg net/socket.c:2638 [inline]\n __sys_sendmsg+0x1e9/0x280 net/socket.c:2667\n __do_sys_sendmsg net/socket.c:2676 [inline]\n __se_sys_sendmsg net/socket.c:2674 [inline]\n __x64_sys_sendmsg+0x46/0x50 net/socket.c:2674\n do_syscall_64+0xd3/0x1d0\n entry_SYSCALL_64_after_hwframe+0x6d/0x75\n\nvalue changed: 0xffffffff83d7feb0 -\u003e 0x0000000000000000\n\nReported by Kernel Concurrency Sanitizer on:\nCPU: 0 PID: 10713 Comm: syz-executor.4 Tainted: G W 6.8.0-syzkaller-08951-gfe46a7dd189e #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024\n\nPrior to this, commit 4cd12c6065df (\"bpf, sockmap: Fix NULL pointer\ndereference in sk_psock_verdict_data_ready()\") fixed one NULL pointer\nsimilarly due to no protection of saved_data_ready. Here is another\ndifferent caller causing the same issue because of the same reason. So\nwe should protect it with sk_callback_lock read lock because the writer\nside in the sk_psock_drop() uses \"write_lock_bh(\u0026sk-\u003esk_callback_lock);\".\n\nTo avoid errors that could happen in future, I move those two pairs of\nlock into the sk_psock_data_ready(), which is suggested by John Fastabend.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36938",
"url": "https://www.suse.com/security/cve/CVE-2024-36938"
},
{
"category": "external",
"summary": "SUSE Bug 1225761 for CVE-2024-36938",
"url": "https://bugzilla.suse.com/1225761"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36938"
},
{
"cve": "CVE-2024-36940",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36940"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: core: delete incorrect free in pinctrl_enable()\n\nThe \"pctldev\" struct is allocated in devm_pinctrl_register_and_init().\nIt\u0027s a devm_ managed pointer that is freed by devm_pinctrl_dev_release(),\nso freeing it in pinctrl_enable() will lead to a double free.\n\nThe devm_pinctrl_dev_release() function frees the pindescs and destroys\nthe mutex as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36940",
"url": "https://www.suse.com/security/cve/CVE-2024-36940"
},
{
"category": "external",
"summary": "SUSE Bug 1225840 for CVE-2024-36940",
"url": "https://bugzilla.suse.com/1225840"
},
{
"category": "external",
"summary": "SUSE Bug 1225841 for CVE-2024-36940",
"url": "https://bugzilla.suse.com/1225841"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "important"
}
],
"title": "CVE-2024-36940"
},
{
"cve": "CVE-2024-36941",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36941"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: nl80211: don\u0027t free NULL coalescing rule\n\nIf the parsing fails, we can dereference a NULL pointer here.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36941",
"url": "https://www.suse.com/security/cve/CVE-2024-36941"
},
{
"category": "external",
"summary": "SUSE Bug 1225835 for CVE-2024-36941",
"url": "https://bugzilla.suse.com/1225835"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36941"
},
{
"cve": "CVE-2024-36942",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36942"
}
],
"notes": [
{
"category": "general",
"text": "** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36942",
"url": "https://www.suse.com/security/cve/CVE-2024-36942"
},
{
"category": "external",
"summary": "SUSE Bug 1225843 for CVE-2024-36942",
"url": "https://bugzilla.suse.com/1225843"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36942"
},
{
"cve": "CVE-2024-36944",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36944"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nReapply \"drm/qxl: simplify qxl_fence_wait\"\n\nThis reverts commit 07ed11afb68d94eadd4ffc082b97c2331307c5ea.\n\nStephen Rostedt reports:\n \"I went to run my tests on my VMs and the tests hung on boot up.\n Unfortunately, the most I ever got out was:\n\n [ 93.607888] Testing event system initcall: OK\n [ 93.667730] Running tests on all trace events:\n [ 93.669757] Testing all events: OK\n [ 95.631064] ------------[ cut here ]------------\n Timed out after 60 seconds\"\n\nand further debugging points to a possible circular locking dependency\nbetween the console_owner locking and the worker pool locking.\n\nReverting the commit allows Steve\u0027s VM to boot to completion again.\n\n[ This may obviously result in the \"[TTM] Buffer eviction failed\"\n messages again, which was the reason for that original revert. But at\n this point this seems preferable to a non-booting system... ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36944",
"url": "https://www.suse.com/security/cve/CVE-2024-36944"
},
{
"category": "external",
"summary": "SUSE Bug 1225847 for CVE-2024-36944",
"url": "https://bugzilla.suse.com/1225847"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36944"
},
{
"cve": "CVE-2024-36945",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36945"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/smc: fix neighbour and rtable leak in smc_ib_find_route()\n\nIn smc_ib_find_route(), the neighbour found by neigh_lookup() and rtable\nresolved by ip_route_output_flow() are not released or put before return.\nIt may cause the refcount leak, so fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36945",
"url": "https://www.suse.com/security/cve/CVE-2024-36945"
},
{
"category": "external",
"summary": "SUSE Bug 1225823 for CVE-2024-36945",
"url": "https://bugzilla.suse.com/1225823"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36945"
},
{
"cve": "CVE-2024-36946",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36946"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nphonet: fix rtm_phonet_notify() skb allocation\n\nfill_route() stores three components in the skb:\n\n- struct rtmsg\n- RTA_DST (u8)\n- RTA_OIF (u32)\n\nTherefore, rtm_phonet_notify() should use\n\nNLMSG_ALIGN(sizeof(struct rtmsg)) +\nnla_total_size(1) +\nnla_total_size(4)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36946",
"url": "https://www.suse.com/security/cve/CVE-2024-36946"
},
{
"category": "external",
"summary": "SUSE Bug 1225851 for CVE-2024-36946",
"url": "https://bugzilla.suse.com/1225851"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36946"
},
{
"cve": "CVE-2024-36947",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36947"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nqibfs: fix dentry leak\n\nsimple_recursive_removal() drops the pinning references to all positives\nin subtree. For the cases when its argument has been kept alive by\nthe pinning alone that\u0027s exactly the right thing to do, but here\nthe argument comes from dcache lookup, that needs to be balanced by\nexplicit dput().\n\nFucked-up-by: Al Viro \u003cviro@zeniv.linux.org.uk\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36947",
"url": "https://www.suse.com/security/cve/CVE-2024-36947"
},
{
"category": "external",
"summary": "SUSE Bug 1225856 for CVE-2024-36947",
"url": "https://bugzilla.suse.com/1225856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "low"
}
],
"title": "CVE-2024-36947"
},
{
"cve": "CVE-2024-36949",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36949"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\namd/amdkfd: sync all devices to wait all processes being evicted\n\nIf there are more than one device doing reset in parallel, the first\ndevice will call kfd_suspend_all_processes() to evict all processes\non all devices, this call takes time to finish. other device will\nstart reset and recover without waiting. if the process has not been\nevicted before doing recover, it will be restored, then caused page\nfault.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36949",
"url": "https://www.suse.com/security/cve/CVE-2024-36949"
},
{
"category": "external",
"summary": "SUSE Bug 1225894 for CVE-2024-36949",
"url": "https://bugzilla.suse.com/1225894"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36949"
},
{
"cve": "CVE-2024-36950",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36950"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirewire: ohci: mask bus reset interrupts between ISR and bottom half\n\nIn the FireWire OHCI interrupt handler, if a bus reset interrupt has\noccurred, mask bus reset interrupts until bus_reset_work has serviced and\ncleared the interrupt.\n\nNormally, we always leave bus reset interrupts masked. We infer the bus\nreset from the self-ID interrupt that happens shortly thereafter. A\nscenario where we unmask bus reset interrupts was introduced in 2008 in\na007bb857e0b26f5d8b73c2ff90782d9c0972620: If\nOHCI_PARAM_DEBUG_BUSRESETS (8) is set in the debug parameter bitmask, we\nwill unmask bus reset interrupts so we can log them.\n\nirq_handler logs the bus reset interrupt. However, we can\u0027t clear the bus\nreset event flag in irq_handler, because we won\u0027t service the event until\nlater. irq_handler exits with the event flag still set. If the\ncorresponding interrupt is still unmasked, the first bus reset will\nusually freeze the system due to irq_handler being called again each\ntime it exits. This freeze can be reproduced by loading firewire_ohci\nwith \"modprobe firewire_ohci debug=-1\" (to enable all debugging output).\nApparently there are also some cases where bus_reset_work will get called\nsoon enough to clear the event, and operation will continue normally.\n\nThis freeze was first reported a few months after a007bb85 was committed,\nbut until now it was never fixed. The debug level could safely be set\nto -1 through sysfs after the module was loaded, but this would be\nineffectual in logging bus reset interrupts since they were only\nunmasked during initialization.\n\nirq_handler will now leave the event flag set but mask bus reset\ninterrupts, so irq_handler won\u0027t be called again and there will be no\nfreeze. If OHCI_PARAM_DEBUG_BUSRESETS is enabled, bus_reset_work will\nunmask the interrupt after servicing the event, so future interrupts\nwill be caught as desired.\n\nAs a side effect to this change, OHCI_PARAM_DEBUG_BUSRESETS can now be\nenabled through sysfs in addition to during initial module loading.\nHowever, when enabled through sysfs, logging of bus reset interrupts will\nbe effective only starting with the second bus reset, after\nbus_reset_work has executed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36950",
"url": "https://www.suse.com/security/cve/CVE-2024-36950"
},
{
"category": "external",
"summary": "SUSE Bug 1225895 for CVE-2024-36950",
"url": "https://bugzilla.suse.com/1225895"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36950"
},
{
"cve": "CVE-2024-36951",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36951"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdkfd: range check cp bad op exception interrupts\n\nDue to a CP interrupt bug, bad packet garbage exception codes are raised.\nDo a range check so that the debugger and runtime do not receive garbage\ncodes.\nUpdate the user api to guard exception code type checking as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36951",
"url": "https://www.suse.com/security/cve/CVE-2024-36951"
},
{
"category": "external",
"summary": "SUSE Bug 1225896 for CVE-2024-36951",
"url": "https://bugzilla.suse.com/1225896"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36951"
},
{
"cve": "CVE-2024-36952",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36952"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: lpfc: Move NPIV\u0027s transport unregistration to after resource clean up\n\nThere are cases after NPIV deletion where the fabric switch still believes\nthe NPIV is logged into the fabric. This occurs when a vport is\nunregistered before the Remove All DA_ID CT and LOGO ELS are sent to the\nfabric.\n\nCurrently fc_remove_host(), which calls dev_loss_tmo for all D_IDs including\nthe fabric D_ID, removes the last ndlp reference and frees the ndlp rport\nobject. This sometimes causes the race condition where the final DA_ID and\nLOGO are skipped from being sent to the fabric switch.\n\nFix by moving the fc_remove_host() and scsi_remove_host() calls after DA_ID\nand LOGO are sent.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36952",
"url": "https://www.suse.com/security/cve/CVE-2024-36952"
},
{
"category": "external",
"summary": "SUSE Bug 1225898 for CVE-2024-36952",
"url": "https://bugzilla.suse.com/1225898"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36952"
},
{
"cve": "CVE-2024-36955",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36955"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: hda: intel-sdw-acpi: fix usage of device_get_named_child_node()\n\nThe documentation for device_get_named_child_node() mentions this\nimportant point:\n\n\"\nThe caller is responsible for calling fwnode_handle_put() on the\nreturned fwnode pointer.\n\"\n\nAdd fwnode_handle_put() to avoid a leaked reference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36955",
"url": "https://www.suse.com/security/cve/CVE-2024-36955"
},
{
"category": "external",
"summary": "SUSE Bug 1225810 for CVE-2024-36955",
"url": "https://bugzilla.suse.com/1225810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "low"
}
],
"title": "CVE-2024-36955"
},
{
"cve": "CVE-2024-36957",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36957"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-af: avoid off-by-one read from userspace\n\nWe try to access count + 1 byte from userspace with memdup_user(buffer,\ncount + 1). However, the userspace only provides buffer of count bytes and\nonly these count bytes are verified to be okay to access. To ensure the\ncopied buffer is NUL terminated, we use memdup_user_nul instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36957",
"url": "https://www.suse.com/security/cve/CVE-2024-36957"
},
{
"category": "external",
"summary": "SUSE Bug 1225762 for CVE-2024-36957",
"url": "https://bugzilla.suse.com/1225762"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "low"
}
],
"title": "CVE-2024-36957"
},
{
"cve": "CVE-2024-36959",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36959"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: devicetree: fix refcount leak in pinctrl_dt_to_map()\n\nIf we fail to allocate propname buffer, we need to drop the reference\ncount we just took. Because the pinctrl_dt_free_maps() includes the\ndroping operation, here we call it directly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36959",
"url": "https://www.suse.com/security/cve/CVE-2024-36959"
},
{
"category": "external",
"summary": "SUSE Bug 1225839 for CVE-2024-36959",
"url": "https://bugzilla.suse.com/1225839"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36959"
},
{
"cve": "CVE-2024-36960",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36960"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vmwgfx: Fix invalid reads in fence signaled events\n\nCorrectly set the length of the drm_event to the size of the structure\nthat\u0027s actually used.\n\nThe length of the drm_event was set to the parent structure instead of\nto the drm_vmw_event_fence which is supposed to be read. drm_read\nuses the length parameter to copy the event to the user space thus\nresuling in oob reads.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36960",
"url": "https://www.suse.com/security/cve/CVE-2024-36960"
},
{
"category": "external",
"summary": "SUSE Bug 1225872 for CVE-2024-36960",
"url": "https://bugzilla.suse.com/1225872"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36960"
},
{
"cve": "CVE-2024-36962",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36962"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ks8851: Queue RX packets in IRQ handler instead of disabling BHs\n\nCurrently the driver uses local_bh_disable()/local_bh_enable() in its\nIRQ handler to avoid triggering net_rx_action() softirq on exit from\nnetif_rx(). The net_rx_action() could trigger this driver .start_xmit\ncallback, which is protected by the same lock as the IRQ handler, so\ncalling the .start_xmit from netif_rx() from the IRQ handler critical\nsection protected by the lock could lead to an attempt to claim the\nalready claimed lock, and a hang.\n\nThe local_bh_disable()/local_bh_enable() approach works only in case\nthe IRQ handler is protected by a spinlock, but does not work if the\nIRQ handler is protected by mutex, i.e. this works for KS8851 with\nParallel bus interface, but not for KS8851 with SPI bus interface.\n\nRemove the BH manipulation and instead of calling netif_rx() inside\nthe IRQ handler code protected by the lock, queue all the received\nSKBs in the IRQ handler into a queue first, and once the IRQ handler\nexits the critical section protected by the lock, dequeue all the\nqueued SKBs and push them all into netif_rx(). At this point, it is\nsafe to trigger the net_rx_action() softirq, since the netif_rx()\ncall is outside of the lock that protects the IRQ handler.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36962",
"url": "https://www.suse.com/security/cve/CVE-2024-36962"
},
{
"category": "external",
"summary": "SUSE Bug 1225827 for CVE-2024-36962",
"url": "https://bugzilla.suse.com/1225827"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36962"
},
{
"cve": "CVE-2024-36964",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36964"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/9p: only translate RWX permissions for plain 9P2000\n\nGarbage in plain 9P2000\u0027s perm bits is allowed through, which causes it\nto be able to set (among others) the suid bit. This was presumably not\nthe intent since the unix extended bits are handled explicitly and\nconditionally on .u.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36964",
"url": "https://www.suse.com/security/cve/CVE-2024-36964"
},
{
"category": "external",
"summary": "SUSE Bug 1225866 for CVE-2024-36964",
"url": "https://bugzilla.suse.com/1225866"
},
{
"category": "external",
"summary": "SUSE Bug 1226325 for CVE-2024-36964",
"url": "https://bugzilla.suse.com/1226325"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "important"
}
],
"title": "CVE-2024-36964"
},
{
"cve": "CVE-2024-36965",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36965"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nremoteproc: mediatek: Make sure IPI buffer fits in L2TCM\n\nThe IPI buffer location is read from the firmware that we load to the\nSystem Companion Processor, and it\u0027s not granted that both the SRAM\n(L2TCM) size that is defined in the devicetree node is large enough\nfor that, and while this is especially true for multi-core SCP, it\u0027s\nstill useful to check on single-core variants as well.\n\nFailing to perform this check may make this driver perform R/W\noperations out of the L2TCM boundary, resulting (at best) in a\nkernel panic.\n\nTo fix that, check that the IPI buffer fits, otherwise return a\nfailure and refuse to boot the relevant SCP core (or the SCP at\nall, if this is single core).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36965",
"url": "https://www.suse.com/security/cve/CVE-2024-36965"
},
{
"category": "external",
"summary": "SUSE Bug 1226149 for CVE-2024-36965",
"url": "https://bugzilla.suse.com/1226149"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36965"
},
{
"cve": "CVE-2024-36967",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36967"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKEYS: trusted: Fix memory leak in tpm2_key_encode()\n\n\u0027scratch\u0027 is never freed. Fix this by calling kfree() in the success, and\nin the error case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36967",
"url": "https://www.suse.com/security/cve/CVE-2024-36967"
},
{
"category": "external",
"summary": "SUSE Bug 1226131 for CVE-2024-36967",
"url": "https://bugzilla.suse.com/1226131"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36967"
},
{
"cve": "CVE-2024-36969",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36969"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix division by zero in setup_dsc_config\n\nWhen slice_height is 0, the division by slice_height in the calculation\nof the number of slices will cause a division by zero driver crash. This\nleaves the kernel in a state that requires a reboot. This patch adds a\ncheck to avoid the division by zero.\n\nThe stack trace below is for the 6.8.4 Kernel. I reproduced the issue on\na Z16 Gen 2 Lenovo Thinkpad with a Apple Studio Display monitor\nconnected via Thunderbolt. The amdgpu driver crashed with this exception\nwhen I rebooted the system with the monitor connected.\n\nkernel: ? die (arch/x86/kernel/dumpstack.c:421 arch/x86/kernel/dumpstack.c:434 arch/x86/kernel/dumpstack.c:447)\nkernel: ? do_trap (arch/x86/kernel/traps.c:113 arch/x86/kernel/traps.c:154)\nkernel: ? setup_dsc_config (drivers/gpu/drm/amd/amdgpu/../display/dc/dsc/dc_dsc.c:1053) amdgpu\nkernel: ? do_error_trap (./arch/x86/include/asm/traps.h:58 arch/x86/kernel/traps.c:175)\nkernel: ? setup_dsc_config (drivers/gpu/drm/amd/amdgpu/../display/dc/dsc/dc_dsc.c:1053) amdgpu\nkernel: ? exc_divide_error (arch/x86/kernel/traps.c:194 (discriminator 2))\nkernel: ? setup_dsc_config (drivers/gpu/drm/amd/amdgpu/../display/dc/dsc/dc_dsc.c:1053) amdgpu\nkernel: ? asm_exc_divide_error (./arch/x86/include/asm/idtentry.h:548)\nkernel: ? setup_dsc_config (drivers/gpu/drm/amd/amdgpu/../display/dc/dsc/dc_dsc.c:1053) amdgpu\nkernel: dc_dsc_compute_config (drivers/gpu/drm/amd/amdgpu/../display/dc/dsc/dc_dsc.c:1109) amdgpu\n\nAfter applying this patch, the driver no longer crashes when the monitor\nis connected and the system is rebooted. I believe this is the same\nissue reported for 3113.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36969",
"url": "https://www.suse.com/security/cve/CVE-2024-36969"
},
{
"category": "external",
"summary": "SUSE Bug 1226155 for CVE-2024-36969",
"url": "https://bugzilla.suse.com/1226155"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36969"
},
{
"cve": "CVE-2024-36971",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36971"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: fix __dst_negative_advice() race\n\n__dst_negative_advice() does not enforce proper RCU rules when\nsk-\u003edst_cache must be cleared, leading to possible UAF.\n\nRCU rules are that we must first clear sk-\u003esk_dst_cache,\nthen call dst_release(old_dst).\n\nNote that sk_dst_reset(sk) is implementing this protocol correctly,\nwhile __dst_negative_advice() uses the wrong order.\n\nGiven that ip6_negative_advice() has special logic\nagainst RTF_CACHE, this means each of the three -\u003enegative_advice()\nexisting methods must perform the sk_dst_reset() themselves.\n\nNote the check against NULL dst is centralized in\n__dst_negative_advice(), there is no need to duplicate\nit in various callbacks.\n\nMany thanks to Clement Lecigne for tracking this issue.\n\nThis old bug became visible after the blamed commit, using UDP sockets.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36971",
"url": "https://www.suse.com/security/cve/CVE-2024-36971"
},
{
"category": "external",
"summary": "SUSE Bug 1226145 for CVE-2024-36971",
"url": "https://bugzilla.suse.com/1226145"
},
{
"category": "external",
"summary": "SUSE Bug 1226324 for CVE-2024-36971",
"url": "https://bugzilla.suse.com/1226324"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36971"
},
{
"cve": "CVE-2024-36972",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36972"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naf_unix: Update unix_sk(sk)-\u003eoob_skb under sk_receive_queue lock.\n\nBilly Jheng Bing-Jhong reported a race between __unix_gc() and\nqueue_oob().\n\n__unix_gc() tries to garbage-collect close()d inflight sockets,\nand then if the socket has MSG_OOB in unix_sk(sk)-\u003eoob_skb, GC\nwill drop the reference and set NULL to it locklessly.\n\nHowever, the peer socket still can send MSG_OOB message and\nqueue_oob() can update unix_sk(sk)-\u003eoob_skb concurrently, leading\nNULL pointer dereference. [0]\n\nTo fix the issue, let\u0027s update unix_sk(sk)-\u003eoob_skb under the\nsk_receive_queue\u0027s lock and take it everywhere we touch oob_skb.\n\nNote that we defer kfree_skb() in manage_oob() to silence lockdep\nfalse-positive (See [1]).\n\n[0]:\nBUG: kernel NULL pointer dereference, address: 0000000000000008\n PF: supervisor write access in kernel mode\n PF: error_code(0x0002) - not-present page\nPGD 8000000009f5e067 P4D 8000000009f5e067 PUD 9f5d067 PMD 0\nOops: 0002 [#1] PREEMPT SMP PTI\nCPU: 3 PID: 50 Comm: kworker/3:1 Not tainted 6.9.0-rc5-00191-gd091e579b864 #110\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\nWorkqueue: events delayed_fput\nRIP: 0010:skb_dequeue (./include/linux/skbuff.h:2386 ./include/linux/skbuff.h:2402 net/core/skbuff.c:3847)\nCode: 39 e3 74 3e 8b 43 10 48 89 ef 83 e8 01 89 43 10 49 8b 44 24 08 49 c7 44 24 08 00 00 00 00 49 8b 14 24 49 c7 04 24 00 00 00 00 \u003c48\u003e 89 42 08 48 89 10 e8 e7 c5 42 00 4c 89 e0 5b 5d 41 5c c3 cc cc\nRSP: 0018:ffffc900001bfd48 EFLAGS: 00000002\nRAX: 0000000000000000 RBX: ffff8880088f5ae8 RCX: 00000000361289f9\nRDX: 0000000000000000 RSI: 0000000000000206 RDI: ffff8880088f5b00\nRBP: ffff8880088f5b00 R08: 0000000000080000 R09: 0000000000000001\nR10: 0000000000000003 R11: 0000000000000001 R12: ffff8880056b6a00\nR13: ffff8880088f5280 R14: 0000000000000001 R15: ffff8880088f5a80\nFS: 0000000000000000(0000) GS:ffff88807dd80000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000008 CR3: 0000000006314000 CR4: 00000000007506f0\nPKRU: 55555554\nCall Trace:\n \u003cTASK\u003e\n unix_release_sock (net/unix/af_unix.c:654)\n unix_release (net/unix/af_unix.c:1050)\n __sock_release (net/socket.c:660)\n sock_close (net/socket.c:1423)\n __fput (fs/file_table.c:423)\n delayed_fput (fs/file_table.c:444 (discriminator 3))\n process_one_work (kernel/workqueue.c:3259)\n worker_thread (kernel/workqueue.c:3329 kernel/workqueue.c:3416)\n kthread (kernel/kthread.c:388)\n ret_from_fork (arch/x86/kernel/process.c:153)\n ret_from_fork_asm (arch/x86/entry/entry_64.S:257)\n \u003c/TASK\u003e\nModules linked in:\nCR2: 0000000000000008",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36972",
"url": "https://www.suse.com/security/cve/CVE-2024-36972"
},
{
"category": "external",
"summary": "SUSE Bug 1226163 for CVE-2024-36972",
"url": "https://bugzilla.suse.com/1226163"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36972"
},
{
"cve": "CVE-2024-36973",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36973"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmisc: microchip: pci1xxxx: fix double free in the error handling of gp_aux_bus_probe()\n\nWhen auxiliary_device_add() returns error and then calls\nauxiliary_device_uninit(), callback function\ngp_auxiliary_device_release() calls ida_free() and\nkfree(aux_device_wrapper) to free memory. We should\u0027t\ncall them again in the error handling path.\n\nFix this by skipping the redundant cleanup functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36973",
"url": "https://www.suse.com/security/cve/CVE-2024-36973"
},
{
"category": "external",
"summary": "SUSE Bug 1226457 for CVE-2024-36973",
"url": "https://bugzilla.suse.com/1226457"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36973"
},
{
"cve": "CVE-2024-36974",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36974"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: taprio: always validate TCA_TAPRIO_ATTR_PRIOMAP\n\nIf one TCA_TAPRIO_ATTR_PRIOMAP attribute has been provided,\ntaprio_parse_mqprio_opt() must validate it, or userspace\ncan inject arbitrary data to the kernel, the second time\ntaprio_change() is called.\n\nFirst call (with valid attributes) sets dev-\u003enum_tc\nto a non zero value.\n\nSecond call (with arbitrary mqprio attributes)\nreturns early from taprio_parse_mqprio_opt()\nand bad things can happen.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36974",
"url": "https://www.suse.com/security/cve/CVE-2024-36974"
},
{
"category": "external",
"summary": "SUSE Bug 1226519 for CVE-2024-36974",
"url": "https://bugzilla.suse.com/1226519"
},
{
"category": "external",
"summary": "SUSE Bug 1227371 for CVE-2024-36974",
"url": "https://bugzilla.suse.com/1227371"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "important"
}
],
"title": "CVE-2024-36974"
},
{
"cve": "CVE-2024-36975",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36975"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKEYS: trusted: Do not use WARN when encode fails\n\nWhen asn1_encode_sequence() fails, WARN is not the correct solution.\n\n1. asn1_encode_sequence() is not an internal function (located\n in lib/asn1_encode.c).\n2. Location is known, which makes the stack trace useless.\n3. Results a crash if panic_on_warn is set.\n\nIt is also noteworthy that the use of WARN is undocumented, and it\nshould be avoided unless there is a carefully considered rationale to\nuse it.\n\nReplace WARN with pr_err, and print the return value instead, which is\nonly useful piece of information.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36975",
"url": "https://www.suse.com/security/cve/CVE-2024-36975"
},
{
"category": "external",
"summary": "SUSE Bug 1226520 for CVE-2024-36975",
"url": "https://bugzilla.suse.com/1226520"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36975"
},
{
"cve": "CVE-2024-36977",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36977"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc3: Wait unconditionally after issuing EndXfer command\n\nCurrently all controller IP/revisions except DWC3_usb3 \u003e= 310a\nwait 1ms unconditionally for ENDXFER completion when IOC is not\nset. This is because DWC_usb3 controller revisions \u003e= 3.10a\nsupports GUCTL2[14: Rst_actbitlater] bit which allows polling\nCMDACT bit to know whether ENDXFER command is completed.\n\nConsider a case where an IN request was queued, and parallelly\nsoft_disconnect was called (due to ffs_epfile_release). This\neventually calls stop_active_transfer with IOC cleared, hence\nsend_gadget_ep_cmd() skips waiting for CMDACT cleared during\nEndXfer. For DWC3 controllers with revisions \u003e= 310a, we don\u0027t\nforcefully wait for 1ms either, and we proceed by unmapping the\nrequests. If ENDXFER didn\u0027t complete by this time, it leads to\nSMMU faults since the controller would still be accessing those\nrequests.\n\nFix this by ensuring ENDXFER completion by adding 1ms delay in\n__dwc3_stop_active_transfer() unconditionally.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36977",
"url": "https://www.suse.com/security/cve/CVE-2024-36977"
},
{
"category": "external",
"summary": "SUSE Bug 1226513 for CVE-2024-36977",
"url": "https://bugzilla.suse.com/1226513"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-36977"
},
{
"cve": "CVE-2024-36978",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36978"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sched: sch_multiq: fix possible OOB write in multiq_tune()\n\nq-\u003ebands will be assigned to qopt-\u003ebands to execute subsequent code logic\nafter kmalloc. So the old q-\u003ebands should not be used in kmalloc.\nOtherwise, an out-of-bounds write will occur.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36978",
"url": "https://www.suse.com/security/cve/CVE-2024-36978"
},
{
"category": "external",
"summary": "SUSE Bug 1226514 for CVE-2024-36978",
"url": "https://bugzilla.suse.com/1226514"
},
{
"category": "external",
"summary": "SUSE Bug 1244631 for CVE-2024-36978",
"url": "https://bugzilla.suse.com/1244631"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "important"
}
],
"title": "CVE-2024-36978"
},
{
"cve": "CVE-2024-37021",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-37021"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfpga: manager: add owner module and take its refcount\n\nThe current implementation of the fpga manager assumes that the low-level\nmodule registers a driver for the parent device and uses its owner pointer\nto take the module\u0027s refcount. This approach is problematic since it can\nlead to a null pointer dereference while attempting to get the manager if\nthe parent device does not have a driver.\n\nTo address this problem, add a module owner pointer to the fpga_manager\nstruct and use it to take the module\u0027s refcount. Modify the functions for\nregistering the manager to take an additional owner module parameter and\nrename them to avoid conflicts. Use the old function names for helper\nmacros that automatically set the module that registers the manager as the\nowner. This ensures compatibility with existing low-level control modules\nand reduces the chances of registering a manager without setting the owner.\n\nAlso, update the documentation to keep it consistent with the new interface\nfor registering an fpga manager.\n\nOther changes: opportunistically move put_device() from __fpga_mgr_get() to\nfpga_mgr_get() and of_fpga_mgr_get() to improve code clarity since the\nmanager device is taken in these functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-37021",
"url": "https://www.suse.com/security/cve/CVE-2024-37021"
},
{
"category": "external",
"summary": "SUSE Bug 1226950 for CVE-2024-37021",
"url": "https://bugzilla.suse.com/1226950"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-37021"
},
{
"cve": "CVE-2024-37078",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-37078"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix potential kernel bug due to lack of writeback flag waiting\n\nDestructive writes to a block device on which nilfs2 is mounted can cause\na kernel bug in the folio/page writeback start routine or writeback end\nroutine (__folio_start_writeback in the log below):\n\n kernel BUG at mm/page-writeback.c:3070!\n Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI\n ...\n RIP: 0010:__folio_start_writeback+0xbaa/0x10e0\n Code: 25 ff 0f 00 00 0f 84 18 01 00 00 e8 40 ca c6 ff e9 17 f6 ff ff\n e8 36 ca c6 ff 4c 89 f7 48 c7 c6 80 c0 12 84 e8 e7 b3 0f 00 90 \u003c0f\u003e\n 0b e8 1f ca c6 ff 4c 89 f7 48 c7 c6 a0 c6 12 84 e8 d0 b3 0f 00\n ...\n Call Trace:\n \u003cTASK\u003e\n nilfs_segctor_do_construct+0x4654/0x69d0 [nilfs2]\n nilfs_segctor_construct+0x181/0x6b0 [nilfs2]\n nilfs_segctor_thread+0x548/0x11c0 [nilfs2]\n kthread+0x2f0/0x390\n ret_from_fork+0x4b/0x80\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nThis is because when the log writer starts a writeback for segment summary\nblocks or a super root block that use the backing device\u0027s page cache, it\ndoes not wait for the ongoing folio/page writeback, resulting in an\ninconsistent writeback state.\n\nFix this issue by waiting for ongoing writebacks when putting\nfolios/pages on the backing device into writeback state.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-37078",
"url": "https://www.suse.com/security/cve/CVE-2024-37078"
},
{
"category": "external",
"summary": "SUSE Bug 1227066 for CVE-2024-37078",
"url": "https://bugzilla.suse.com/1227066"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "low"
}
],
"title": "CVE-2024-37078"
},
{
"cve": "CVE-2024-37353",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-37353"
}
],
"notes": [
{
"category": "general",
"text": "** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-37353",
"url": "https://www.suse.com/security/cve/CVE-2024-37353"
},
{
"category": "external",
"summary": "SUSE Bug 1226875 for CVE-2024-37353",
"url": "https://bugzilla.suse.com/1226875"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.9,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "low"
}
],
"title": "CVE-2024-37353"
},
{
"cve": "CVE-2024-37354",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-37354"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix crash on racing fsync and size-extending write into prealloc\n\nWe have been seeing crashes on duplicate keys in\nbtrfs_set_item_key_safe():\n\n BTRFS critical (device vdb): slot 4 key (450 108 8192) new key (450 108 8192)\n ------------[ cut here ]------------\n kernel BUG at fs/btrfs/ctree.c:2620!\n invalid opcode: 0000 [#1] PREEMPT SMP PTI\n CPU: 0 PID: 3139 Comm: xfs_io Kdump: loaded Not tainted 6.9.0 #6\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-2.fc40 04/01/2014\n RIP: 0010:btrfs_set_item_key_safe+0x11f/0x290 [btrfs]\n\nWith the following stack trace:\n\n #0 btrfs_set_item_key_safe (fs/btrfs/ctree.c:2620:4)\n #1 btrfs_drop_extents (fs/btrfs/file.c:411:4)\n #2 log_one_extent (fs/btrfs/tree-log.c:4732:9)\n #3 btrfs_log_changed_extents (fs/btrfs/tree-log.c:4955:9)\n #4 btrfs_log_inode (fs/btrfs/tree-log.c:6626:9)\n #5 btrfs_log_inode_parent (fs/btrfs/tree-log.c:7070:8)\n #6 btrfs_log_dentry_safe (fs/btrfs/tree-log.c:7171:8)\n #7 btrfs_sync_file (fs/btrfs/file.c:1933:8)\n #8 vfs_fsync_range (fs/sync.c:188:9)\n #9 vfs_fsync (fs/sync.c:202:9)\n #10 do_fsync (fs/sync.c:212:9)\n #11 __do_sys_fdatasync (fs/sync.c:225:9)\n #12 __se_sys_fdatasync (fs/sync.c:223:1)\n #13 __x64_sys_fdatasync (fs/sync.c:223:1)\n #14 do_syscall_x64 (arch/x86/entry/common.c:52:14)\n #15 do_syscall_64 (arch/x86/entry/common.c:83:7)\n #16 entry_SYSCALL_64+0xaf/0x14c (arch/x86/entry/entry_64.S:121)\n\nSo we\u0027re logging a changed extent from fsync, which is splitting an\nextent in the log tree. But this split part already exists in the tree,\ntriggering the BUG().\n\nThis is the state of the log tree at the time of the crash, dumped with\ndrgn (https://github.com/osandov/drgn/blob/main/contrib/btrfs_tree.py)\nto get more details than btrfs_print_leaf() gives us:\n\n \u003e\u003e\u003e print_extent_buffer(prog.crashed_thread().stack_trace()[0][\"eb\"])\n leaf 33439744 level 0 items 72 generation 9 owner 18446744073709551610\n leaf 33439744 flags 0x100000000000000\n fs uuid e5bd3946-400c-4223-8923-190ef1f18677\n chunk uuid d58cb17e-6d02-494a-829a-18b7d8a399da\n item 0 key (450 INODE_ITEM 0) itemoff 16123 itemsize 160\n generation 7 transid 9 size 8192 nbytes 8473563889606862198\n block group 0 mode 100600 links 1 uid 0 gid 0 rdev 0\n sequence 204 flags 0x10(PREALLOC)\n atime 1716417703.220000000 (2024-05-22 15:41:43)\n ctime 1716417704.983333333 (2024-05-22 15:41:44)\n mtime 1716417704.983333333 (2024-05-22 15:41:44)\n otime 17592186044416.000000000 (559444-03-08 01:40:16)\n item 1 key (450 INODE_REF 256) itemoff 16110 itemsize 13\n index 195 namelen 3 name: 193\n item 2 key (450 XATTR_ITEM 1640047104) itemoff 16073 itemsize 37\n location key (0 UNKNOWN.0 0) type XATTR\n transid 7 data_len 1 name_len 6\n name: user.a\n data a\n item 3 key (450 EXTENT_DATA 0) itemoff 16020 itemsize 53\n generation 9 type 1 (regular)\n extent data disk byte 303144960 nr 12288\n extent data offset 0 nr 4096 ram 12288\n extent compression 0 (none)\n item 4 key (450 EXTENT_DATA 4096) itemoff 15967 itemsize 53\n generation 9 type 2 (prealloc)\n prealloc data disk byte 303144960 nr 12288\n prealloc data offset 4096 nr 8192\n item 5 key (450 EXTENT_DATA 8192) itemoff 15914 itemsize 53\n generation 9 type 2 (prealloc)\n prealloc data disk byte 303144960 nr 12288\n prealloc data offset 8192 nr 4096\n ...\n\nSo the real problem happened earlier: notice that items 4 (4k-12k) and 5\n(8k-12k) overlap. Both are prealloc extents. Item 4 straddles i_size and\nitem 5 starts at i_size.\n\nHere is the state of \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-37354",
"url": "https://www.suse.com/security/cve/CVE-2024-37354"
},
{
"category": "external",
"summary": "SUSE Bug 1227101 for CVE-2024-37354",
"url": "https://bugzilla.suse.com/1227101"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-37354"
},
{
"cve": "CVE-2024-38381",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38381"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfc: nci: Fix uninit-value in nci_rx_work\n\nsyzbot reported the following uninit-value access issue [1]\n\nnci_rx_work() parses received packet from ndev-\u003erx_q. It should be\nvalidated header size, payload size and total packet size before\nprocessing the packet. If an invalid packet is detected, it should be\nsilently discarded.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38381",
"url": "https://www.suse.com/security/cve/CVE-2024-38381"
},
{
"category": "external",
"summary": "SUSE Bug 1226878 for CVE-2024-38381",
"url": "https://bugzilla.suse.com/1226878"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-38381"
},
{
"cve": "CVE-2024-38384",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38384"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-cgroup: fix list corruption from reorder of WRITE -\u003elqueued\n\n__blkcg_rstat_flush() can be run anytime, especially when blk_cgroup_bio_start\nis being executed.\n\nIf WRITE of `-\u003elqueued` is re-ordered with READ of \u0027bisc-\u003elnode.next\u0027 in\nthe loop of __blkcg_rstat_flush(), `next_bisc` can be assigned with one\nstat instance being added in blk_cgroup_bio_start(), then the local\nlist in __blkcg_rstat_flush() could be corrupted.\n\nFix the issue by adding one barrier.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38384",
"url": "https://www.suse.com/security/cve/CVE-2024-38384"
},
{
"category": "external",
"summary": "SUSE Bug 1226938 for CVE-2024-38384",
"url": "https://bugzilla.suse.com/1226938"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-38384"
},
{
"cve": "CVE-2024-38385",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38385"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngenirq/irqdesc: Prevent use-after-free in irq_find_at_or_after()\n\nirq_find_at_or_after() dereferences the interrupt descriptor which is\nreturned by mt_find() while neither holding sparse_irq_lock nor RCU read\nlock, which means the descriptor can be freed between mt_find() and the\ndereference:\n\n CPU0 CPU1\n desc = mt_find()\n delayed_free_desc(desc)\n irq_desc_get_irq(desc)\n\nThe use-after-free is reported by KASAN:\n\n Call trace:\n irq_get_next_irq+0x58/0x84\n show_stat+0x638/0x824\n seq_read_iter+0x158/0x4ec\n proc_reg_read_iter+0x94/0x12c\n vfs_read+0x1e0/0x2c8\n\n Freed by task 4471:\n slab_free_freelist_hook+0x174/0x1e0\n __kmem_cache_free+0xa4/0x1dc\n kfree+0x64/0x128\n irq_kobj_release+0x28/0x3c\n kobject_put+0xcc/0x1e0\n delayed_free_desc+0x14/0x2c\n rcu_do_batch+0x214/0x720\n\nGuard the access with a RCU read lock section.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38385",
"url": "https://www.suse.com/security/cve/CVE-2024-38385"
},
{
"category": "external",
"summary": "SUSE Bug 1227085 for CVE-2024-38385",
"url": "https://bugzilla.suse.com/1227085"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-38385"
},
{
"cve": "CVE-2024-38388",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38388"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: hda/cs_dsp_ctl: Use private_free for control cleanup\n\nUse the control private_free callback to free the associated data\nblock. This ensures that the memory won\u0027t leak, whatever way the\ncontrol gets destroyed.\n\nThe original implementation didn\u0027t actually remove the ALSA\ncontrols in hda_cs_dsp_control_remove(). It only freed the internal\ntracking structure. This meant it was possible to remove/unload the\namp driver while leaving its ALSA controls still present in the\nsoundcard. Obviously attempting to access them could cause segfaults\nor at least dereferencing stale pointers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38388",
"url": "https://www.suse.com/security/cve/CVE-2024-38388"
},
{
"category": "external",
"summary": "SUSE Bug 1226890 for CVE-2024-38388",
"url": "https://bugzilla.suse.com/1226890"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "low"
}
],
"title": "CVE-2024-38388"
},
{
"cve": "CVE-2024-38390",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38390"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm/a6xx: Avoid a nullptr dereference when speedbin setting fails\n\nCalling a6xx_destroy() before adreno_gpu_init() leads to a null pointer\ndereference on:\n\nmsm_gpu_cleanup() : platform_set_drvdata(gpu-\u003epdev, NULL);\n\nas gpu-\u003epdev is only assigned in:\n\na6xx_gpu_init()\n|_ adreno_gpu_init\n |_ msm_gpu_init()\n\nInstead of relying on handwavy null checks down the cleanup chain,\nexplicitly de-allocate the LLC data and free a6xx_gpu instead.\n\nPatchwork: https://patchwork.freedesktop.org/patch/588919/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38390",
"url": "https://www.suse.com/security/cve/CVE-2024-38390"
},
{
"category": "external",
"summary": "SUSE Bug 1226891 for CVE-2024-38390",
"url": "https://bugzilla.suse.com/1226891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-38390"
},
{
"cve": "CVE-2024-38391",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38391"
}
],
"notes": [
{
"category": "general",
"text": "** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38391",
"url": "https://www.suse.com/security/cve/CVE-2024-38391"
},
{
"category": "external",
"summary": "SUSE Bug 1226894 for CVE-2024-38391",
"url": "https://bugzilla.suse.com/1226894"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "low"
}
],
"title": "CVE-2024-38391"
},
{
"cve": "CVE-2024-38539",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38539"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/cma: Fix kmemleak in rdma_core observed during blktests nvme/rdma use siw\n\nWhen running blktests nvme/rdma, the following kmemleak issue will appear.\n\nkmemleak: Kernel memory leak detector initialized (mempool available:36041)\nkmemleak: Automatic memory scanning thread started\nkmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak)\nkmemleak: 8 new suspected memory leaks (see /sys/kernel/debug/kmemleak)\nkmemleak: 17 new suspected memory leaks (see /sys/kernel/debug/kmemleak)\nkmemleak: 4 new suspected memory leaks (see /sys/kernel/debug/kmemleak)\n\nunreferenced object 0xffff88855da53400 (size 192):\n comm \"rdma\", pid 10630, jiffies 4296575922\n hex dump (first 32 bytes):\n 37 00 00 00 00 00 00 00 c0 ff ff ff 1f 00 00 00 7...............\n 10 34 a5 5d 85 88 ff ff 10 34 a5 5d 85 88 ff ff .4.].....4.]....\n backtrace (crc 47f66721):\n [\u003cffffffff911251bd\u003e] kmalloc_trace+0x30d/0x3b0\n [\u003cffffffffc2640ff7\u003e] alloc_gid_entry+0x47/0x380 [ib_core]\n [\u003cffffffffc2642206\u003e] add_modify_gid+0x166/0x930 [ib_core]\n [\u003cffffffffc2643468\u003e] ib_cache_update.part.0+0x6d8/0x910 [ib_core]\n [\u003cffffffffc2644e1a\u003e] ib_cache_setup_one+0x24a/0x350 [ib_core]\n [\u003cffffffffc263949e\u003e] ib_register_device+0x9e/0x3a0 [ib_core]\n [\u003cffffffffc2a3d389\u003e] 0xffffffffc2a3d389\n [\u003cffffffffc2688cd8\u003e] nldev_newlink+0x2b8/0x520 [ib_core]\n [\u003cffffffffc2645fe3\u003e] rdma_nl_rcv_msg+0x2c3/0x520 [ib_core]\n [\u003cffffffffc264648c\u003e]\nrdma_nl_rcv_skb.constprop.0.isra.0+0x23c/0x3a0 [ib_core]\n [\u003cffffffff9270e7b5\u003e] netlink_unicast+0x445/0x710\n [\u003cffffffff9270f1f1\u003e] netlink_sendmsg+0x761/0xc40\n [\u003cffffffff9249db29\u003e] __sys_sendto+0x3a9/0x420\n [\u003cffffffff9249dc8c\u003e] __x64_sys_sendto+0xdc/0x1b0\n [\u003cffffffff92db0ad3\u003e] do_syscall_64+0x93/0x180\n [\u003cffffffff92e00126\u003e] entry_SYSCALL_64_after_hwframe+0x71/0x79\n\nThe root cause: rdma_put_gid_attr is not called when sgid_attr is set\nto ERR_PTR(-ENODEV).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38539",
"url": "https://www.suse.com/security/cve/CVE-2024-38539"
},
{
"category": "external",
"summary": "SUSE Bug 1226608 for CVE-2024-38539",
"url": "https://bugzilla.suse.com/1226608"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "low"
}
],
"title": "CVE-2024-38539"
},
{
"cve": "CVE-2024-38540",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38540"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt_re: avoid shift undefined behavior in bnxt_qplib_alloc_init_hwq\n\nUndefined behavior is triggered when bnxt_qplib_alloc_init_hwq is called\nwith hwq_attr-\u003eaux_depth != 0 and hwq_attr-\u003eaux_stride == 0.\nIn that case, \"roundup_pow_of_two(hwq_attr-\u003eaux_stride)\" gets called.\nroundup_pow_of_two is documented as undefined for 0.\n\nFix it in the one caller that had this combination.\n\nThe undefined behavior was detected by UBSAN:\n UBSAN: shift-out-of-bounds in ./include/linux/log2.h:57:13\n shift exponent 64 is too large for 64-bit type \u0027long unsigned int\u0027\n CPU: 24 PID: 1075 Comm: (udev-worker) Not tainted 6.9.0-rc6+ #4\n Hardware name: Abacus electric, s.r.o. - servis@abacus.cz Super Server/H12SSW-iN, BIOS 2.7 10/25/2023\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x5d/0x80\n ubsan_epilogue+0x5/0x30\n __ubsan_handle_shift_out_of_bounds.cold+0x61/0xec\n __roundup_pow_of_two+0x25/0x35 [bnxt_re]\n bnxt_qplib_alloc_init_hwq+0xa1/0x470 [bnxt_re]\n bnxt_qplib_create_qp+0x19e/0x840 [bnxt_re]\n bnxt_re_create_qp+0x9b1/0xcd0 [bnxt_re]\n ? srso_alias_return_thunk+0x5/0xfbef5\n ? srso_alias_return_thunk+0x5/0xfbef5\n ? __kmalloc+0x1b6/0x4f0\n ? create_qp.part.0+0x128/0x1c0 [ib_core]\n ? __pfx_bnxt_re_create_qp+0x10/0x10 [bnxt_re]\n create_qp.part.0+0x128/0x1c0 [ib_core]\n ib_create_qp_kernel+0x50/0xd0 [ib_core]\n create_mad_qp+0x8e/0xe0 [ib_core]\n ? __pfx_qp_event_handler+0x10/0x10 [ib_core]\n ib_mad_init_device+0x2be/0x680 [ib_core]\n add_client_context+0x10d/0x1a0 [ib_core]\n enable_device_and_get+0xe0/0x1d0 [ib_core]\n ib_register_device+0x53c/0x630 [ib_core]\n ? srso_alias_return_thunk+0x5/0xfbef5\n bnxt_re_probe+0xbd8/0xe50 [bnxt_re]\n ? __pfx_bnxt_re_probe+0x10/0x10 [bnxt_re]\n auxiliary_bus_probe+0x49/0x80\n ? driver_sysfs_add+0x57/0xc0\n really_probe+0xde/0x340\n ? pm_runtime_barrier+0x54/0x90\n ? __pfx___driver_attach+0x10/0x10\n __driver_probe_device+0x78/0x110\n driver_probe_device+0x1f/0xa0\n __driver_attach+0xba/0x1c0\n bus_for_each_dev+0x8f/0xe0\n bus_add_driver+0x146/0x220\n driver_register+0x72/0xd0\n __auxiliary_driver_register+0x6e/0xd0\n ? __pfx_bnxt_re_mod_init+0x10/0x10 [bnxt_re]\n bnxt_re_mod_init+0x3e/0xff0 [bnxt_re]\n ? __pfx_bnxt_re_mod_init+0x10/0x10 [bnxt_re]\n do_one_initcall+0x5b/0x310\n do_init_module+0x90/0x250\n init_module_from_file+0x86/0xc0\n idempotent_init_module+0x121/0x2b0\n __x64_sys_finit_module+0x5e/0xb0\n do_syscall_64+0x82/0x160\n ? srso_alias_return_thunk+0x5/0xfbef5\n ? syscall_exit_to_user_mode_prepare+0x149/0x170\n ? srso_alias_return_thunk+0x5/0xfbef5\n ? syscall_exit_to_user_mode+0x75/0x230\n ? srso_alias_return_thunk+0x5/0xfbef5\n ? do_syscall_64+0x8e/0x160\n ? srso_alias_return_thunk+0x5/0xfbef5\n ? __count_memcg_events+0x69/0x100\n ? srso_alias_return_thunk+0x5/0xfbef5\n ? count_memcg_events.constprop.0+0x1a/0x30\n ? srso_alias_return_thunk+0x5/0xfbef5\n ? handle_mm_fault+0x1f0/0x300\n ? srso_alias_return_thunk+0x5/0xfbef5\n ? do_user_addr_fault+0x34e/0x640\n ? srso_alias_return_thunk+0x5/0xfbef5\n ? srso_alias_return_thunk+0x5/0xfbef5\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n RIP: 0033:0x7f4e5132821d\n Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d e3 db 0c 00 f7 d8 64 89 01 48\n RSP: 002b:00007ffca9c906a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000139\n RAX: ffffffffffffffda RBX: 0000563ec8a8f130 RCX: 00007f4e5132821d\n RDX: 0000000000000000 RSI: 00007f4e518fa07d RDI: 000000000000003b\n RBP: 00007ffca9c90760 R08: 00007f4e513f6b20 R09: 00007ffca9c906f0\n R10: 0000563ec8a8faa0 R11: 0000000000000246 R12: 00007f4e518fa07d\n R13: 0000000000020000 R14: 0000563ec8409e90 R15: 0000563ec8a8fa60\n \u003c/TASK\u003e\n ---[ end trace ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38540",
"url": "https://www.suse.com/security/cve/CVE-2024-38540"
},
{
"category": "external",
"summary": "SUSE Bug 1226582 for CVE-2024-38540",
"url": "https://bugzilla.suse.com/1226582"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-38540"
},
{
"cve": "CVE-2024-38541",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38541"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nof: module: add buffer overflow check in of_modalias()\n\nIn of_modalias(), if the buffer happens to be too small even for the 1st\nsnprintf() call, the len parameter will become negative and str parameter\n(if not NULL initially) will point beyond the buffer\u0027s end. Add the buffer\noverflow check after the 1st snprintf() call and fix such check after the\nstrlen() call (accounting for the terminating NUL char).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38541",
"url": "https://www.suse.com/security/cve/CVE-2024-38541"
},
{
"category": "external",
"summary": "SUSE Bug 1226587 for CVE-2024-38541",
"url": "https://bugzilla.suse.com/1226587"
},
{
"category": "external",
"summary": "SUSE Bug 1227496 for CVE-2024-38541",
"url": "https://bugzilla.suse.com/1227496"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-38541"
},
{
"cve": "CVE-2024-38543",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38543"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlib/test_hmm.c: handle src_pfns and dst_pfns allocation failure\n\nThe kcalloc() in dmirror_device_evict_chunk() will return null if the\nphysical memory has run out. As a result, if src_pfns or dst_pfns is\ndereferenced, the null pointer dereference bug will happen.\n\nMoreover, the device is going away. If the kcalloc() fails, the pages\nmapping a chunk could not be evicted. So add a __GFP_NOFAIL flag in\nkcalloc().\n\nFinally, as there is no need to have physically contiguous memory, Switch\nkcalloc() to kvcalloc() in order to avoid failing allocations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38543",
"url": "https://www.suse.com/security/cve/CVE-2024-38543"
},
{
"category": "external",
"summary": "SUSE Bug 1226594 for CVE-2024-38543",
"url": "https://bugzilla.suse.com/1226594"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-38543"
},
{
"cve": "CVE-2024-38544",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38544"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rxe: Fix seg fault in rxe_comp_queue_pkt\n\nIn rxe_comp_queue_pkt() an incoming response packet skb is enqueued to the\nresp_pkts queue and then a decision is made whether to run the completer\ntask inline or schedule it. Finally the skb is dereferenced to bump a \u0027hw\u0027\nperformance counter. This is wrong because if the completer task is\nalready running in a separate thread it may have already processed the skb\nand freed it which can cause a seg fault. This has been observed\ninfrequently in testing at high scale.\n\nThis patch fixes this by changing the order of enqueuing the packet until\nafter the counter is accessed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38544",
"url": "https://www.suse.com/security/cve/CVE-2024-38544"
},
{
"category": "external",
"summary": "SUSE Bug 1226597 for CVE-2024-38544",
"url": "https://bugzilla.suse.com/1226597"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-38544"
},
{
"cve": "CVE-2024-38545",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38545"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/hns: Fix UAF for cq async event\n\nThe refcount of CQ is not protected by locks. When CQ asynchronous\nevents and CQ destruction are concurrent, CQ may have been released,\nwhich will cause UAF.\n\nUse the xa_lock() to protect the CQ refcount.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38545",
"url": "https://www.suse.com/security/cve/CVE-2024-38545"
},
{
"category": "external",
"summary": "SUSE Bug 1226595 for CVE-2024-38545",
"url": "https://bugzilla.suse.com/1226595"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-38545"
},
{
"cve": "CVE-2024-38546",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38546"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm: vc4: Fix possible null pointer dereference\n\nIn vc4_hdmi_audio_init() of_get_address() may return\nNULL which is later dereferenced. Fix this bug by adding NULL check.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38546",
"url": "https://www.suse.com/security/cve/CVE-2024-38546"
},
{
"category": "external",
"summary": "SUSE Bug 1226593 for CVE-2024-38546",
"url": "https://bugzilla.suse.com/1226593"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-38546"
},
{
"cve": "CVE-2024-38547",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38547"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: atomisp: ssh_css: Fix a null-pointer dereference in load_video_binaries\n\nThe allocation failure of mycs-\u003eyuv_scaler_binary in load_video_binaries()\nis followed with a dereference of mycs-\u003eyuv_scaler_binary after the\nfollowing call chain:\n\nsh_css_pipe_load_binaries()\n |-\u003e load_video_binaries(mycs-\u003eyuv_scaler_binary == NULL)\n |\n |-\u003e sh_css_pipe_unload_binaries()\n |-\u003e unload_video_binaries()\n\nIn unload_video_binaries(), it calls to ia_css_binary_unload with argument\n\u0026pipe-\u003epipe_settings.video.yuv_scaler_binary[i], which refers to the\nsame memory slot as mycs-\u003eyuv_scaler_binary. Thus, a null-pointer\ndereference is triggered.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38547",
"url": "https://www.suse.com/security/cve/CVE-2024-38547"
},
{
"category": "external",
"summary": "SUSE Bug 1226632 for CVE-2024-38547",
"url": "https://bugzilla.suse.com/1226632"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-38547"
},
{
"cve": "CVE-2024-38548",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38548"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm: bridge: cdns-mhdp8546: Fix possible null pointer dereference\n\nIn cdns_mhdp_atomic_enable(), the return value of drm_mode_duplicate() is\nassigned to mhdp_state-\u003ecurrent_mode, and there is a dereference of it in\ndrm_mode_set_name(), which will lead to a NULL pointer dereference on\nfailure of drm_mode_duplicate().\n\nFix this bug add a check of mhdp_state-\u003ecurrent_mode.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38548",
"url": "https://www.suse.com/security/cve/CVE-2024-38548"
},
{
"category": "external",
"summary": "SUSE Bug 1228202 for CVE-2024-38548",
"url": "https://bugzilla.suse.com/1228202"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-38548"
},
{
"cve": "CVE-2024-38549",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38549"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/mediatek: Add 0 size check to mtk_drm_gem_obj\n\nAdd a check to mtk_drm_gem_init if we attempt to allocate a GEM object\nof 0 bytes. Currently, no such check exists and the kernel will panic if\na userspace application attempts to allocate a 0x0 GBM buffer.\n\nTested by attempting to allocate a 0x0 GBM buffer on an MT8188 and\nverifying that we now return EINVAL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38549",
"url": "https://www.suse.com/security/cve/CVE-2024-38549"
},
{
"category": "external",
"summary": "SUSE Bug 1226735 for CVE-2024-38549",
"url": "https://bugzilla.suse.com/1226735"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-38549"
},
{
"cve": "CVE-2024-38550",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38550"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: kirkwood: Fix potential NULL dereference\n\nIn kirkwood_dma_hw_params() mv_mbus_dram_info() returns NULL if\nCONFIG_PLAT_ORION macro is not defined.\nFix this bug by adding NULL check.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38550",
"url": "https://www.suse.com/security/cve/CVE-2024-38550"
},
{
"category": "external",
"summary": "SUSE Bug 1226633 for CVE-2024-38550",
"url": "https://bugzilla.suse.com/1226633"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-38550"
},
{
"cve": "CVE-2024-38551",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38551"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: mediatek: Assign dummy when codec not specified for a DAI link\n\nMediaTek sound card drivers are checking whether a DAI link is present\nand used on a board to assign the correct parameters and this is done\nby checking the codec DAI names at probe time.\n\nIf no real codec is present, assign the dummy codec to the DAI link\nto avoid NULL pointer during string comparison.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38551",
"url": "https://www.suse.com/security/cve/CVE-2024-38551"
},
{
"category": "external",
"summary": "SUSE Bug 1226761 for CVE-2024-38551",
"url": "https://bugzilla.suse.com/1226761"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-38551"
},
{
"cve": "CVE-2024-38552",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38552"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix potential index out of bounds in color transformation function\n\nFixes index out of bounds issue in the color transformation function.\nThe issue could occur when the index \u0027i\u0027 exceeds the number of transfer\nfunction points (TRANSFER_FUNC_POINTS).\n\nThe fix adds a check to ensure \u0027i\u0027 is within bounds before accessing the\ntransfer function points. If \u0027i\u0027 is out of bounds, an error message is\nlogged and the function returns false to indicate an error.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn10/dcn10_cm_common.c:405 cm_helper_translate_curve_to_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.red\u0027 1025 \u003c= s32max\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn10/dcn10_cm_common.c:406 cm_helper_translate_curve_to_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.green\u0027 1025 \u003c= s32max\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn10/dcn10_cm_common.c:407 cm_helper_translate_curve_to_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.blue\u0027 1025 \u003c= s32max",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38552",
"url": "https://www.suse.com/security/cve/CVE-2024-38552"
},
{
"category": "external",
"summary": "SUSE Bug 1226767 for CVE-2024-38552",
"url": "https://bugzilla.suse.com/1226767"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-38552"
},
{
"cve": "CVE-2024-38553",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38553"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: fec: remove .ndo_poll_controller to avoid deadlocks\n\nThere is a deadlock issue found in sungem driver, please refer to the\ncommit ac0a230f719b (\"eth: sungem: remove .ndo_poll_controller to avoid\ndeadlocks\"). The root cause of the issue is that netpoll is in atomic\ncontext and disable_irq() is called by .ndo_poll_controller interface\nof sungem driver, however, disable_irq() might sleep. After analyzing\nthe implementation of fec_poll_controller(), the fec driver should have\nthe same issue. Due to the fec driver uses NAPI for TX completions, the\n.ndo_poll_controller is unnecessary to be implemented in the fec driver,\nso fec_poll_controller() can be safely removed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38553",
"url": "https://www.suse.com/security/cve/CVE-2024-38553"
},
{
"category": "external",
"summary": "SUSE Bug 1226744 for CVE-2024-38553",
"url": "https://bugzilla.suse.com/1226744"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-38553"
},
{
"cve": "CVE-2024-38554",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38554"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nax25: Fix reference count leak issue of net_device\n\nThere is a reference count leak issue of the object \"net_device\" in\nax25_dev_device_down(). When the ax25 device is shutting down, the\nax25_dev_device_down() drops the reference count of net_device one\nor zero times depending on if we goto unlock_put or not, which will\ncause memory leak.\n\nIn order to solve the above issue, decrease the reference count of\nnet_device after dev-\u003eax25_ptr is set to null.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38554",
"url": "https://www.suse.com/security/cve/CVE-2024-38554"
},
{
"category": "external",
"summary": "SUSE Bug 1226742 for CVE-2024-38554",
"url": "https://bugzilla.suse.com/1226742"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-38554"
},
{
"cve": "CVE-2024-38555",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38555"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Discard command completions in internal error\n\nFix use after free when FW completion arrives while device is in\ninternal error state. Avoid calling completion handler in this case,\nsince the device will flush the command interface and trigger all\ncompletions manually.\n\nKernel log:\n------------[ cut here ]------------\nrefcount_t: underflow; use-after-free.\n...\nRIP: 0010:refcount_warn_saturate+0xd8/0xe0\n...\nCall Trace:\n\u003cIRQ\u003e\n? __warn+0x79/0x120\n? refcount_warn_saturate+0xd8/0xe0\n? report_bug+0x17c/0x190\n? handle_bug+0x3c/0x60\n? exc_invalid_op+0x14/0x70\n? asm_exc_invalid_op+0x16/0x20\n? refcount_warn_saturate+0xd8/0xe0\ncmd_ent_put+0x13b/0x160 [mlx5_core]\nmlx5_cmd_comp_handler+0x5f9/0x670 [mlx5_core]\ncmd_comp_notifier+0x1f/0x30 [mlx5_core]\nnotifier_call_chain+0x35/0xb0\natomic_notifier_call_chain+0x16/0x20\nmlx5_eq_async_int+0xf6/0x290 [mlx5_core]\nnotifier_call_chain+0x35/0xb0\natomic_notifier_call_chain+0x16/0x20\nirq_int_handler+0x19/0x30 [mlx5_core]\n__handle_irq_event_percpu+0x4b/0x160\nhandle_irq_event+0x2e/0x80\nhandle_edge_irq+0x98/0x230\n__common_interrupt+0x3b/0xa0\ncommon_interrupt+0x7b/0xa0\n\u003c/IRQ\u003e\n\u003cTASK\u003e\nasm_common_interrupt+0x22/0x40",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38555",
"url": "https://www.suse.com/security/cve/CVE-2024-38555"
},
{
"category": "external",
"summary": "SUSE Bug 1226607 for CVE-2024-38555",
"url": "https://bugzilla.suse.com/1226607"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-38555"
},
{
"cve": "CVE-2024-38556",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38556"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Add a timeout to acquire the command queue semaphore\n\nPrevent forced completion handling on an entry that has not yet been\nassigned an index, causing an out of bounds access on idx = -22.\nInstead of waiting indefinitely for the sem, blocking flow now waits for\nindex to be allocated or a sem acquisition timeout before beginning the\ntimer for FW completion.\n\nKernel log example:\nmlx5_core 0000:06:00.0: wait_func_handle_exec_timeout:1128:(pid 185911): cmd[-22]: CREATE_UCTX(0xa04) No done completion",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38556",
"url": "https://www.suse.com/security/cve/CVE-2024-38556"
},
{
"category": "external",
"summary": "SUSE Bug 1226774 for CVE-2024-38556",
"url": "https://bugzilla.suse.com/1226774"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-38556"
},
{
"cve": "CVE-2024-38557",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38557"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Reload only IB representors upon lag disable/enable\n\nOn lag disable, the bond IB device along with all of its\nrepresentors are destroyed, and then the slaves\u0027 representors get reloaded.\n\nIn case the slave IB representor load fails, the eswitch error flow\nunloads all representors, including ethernet representors, where the\nnetdevs get detached and removed from lag bond. Such flow is inaccurate\nas the lag driver is not responsible for loading/unloading ethernet\nrepresentors. Furthermore, the flow described above begins by holding\nlag lock to prevent bond changes during disable flow. However, when\nreaching the ethernet representors detachment from lag, the lag lock is\nrequired again, triggering the following deadlock:\n\nCall trace:\n__switch_to+0xf4/0x148\n__schedule+0x2c8/0x7d0\nschedule+0x50/0xe0\nschedule_preempt_disabled+0x18/0x28\n__mutex_lock.isra.13+0x2b8/0x570\n__mutex_lock_slowpath+0x1c/0x28\nmutex_lock+0x4c/0x68\nmlx5_lag_remove_netdev+0x3c/0x1a0 [mlx5_core]\nmlx5e_uplink_rep_disable+0x70/0xa0 [mlx5_core]\nmlx5e_detach_netdev+0x6c/0xb0 [mlx5_core]\nmlx5e_netdev_change_profile+0x44/0x138 [mlx5_core]\nmlx5e_netdev_attach_nic_profile+0x28/0x38 [mlx5_core]\nmlx5e_vport_rep_unload+0x184/0x1b8 [mlx5_core]\nmlx5_esw_offloads_rep_load+0xd8/0xe0 [mlx5_core]\nmlx5_eswitch_reload_reps+0x74/0xd0 [mlx5_core]\nmlx5_disable_lag+0x130/0x138 [mlx5_core]\nmlx5_lag_disable_change+0x6c/0x70 [mlx5_core] // hold ldev-\u003elock\nmlx5_devlink_eswitch_mode_set+0xc0/0x410 [mlx5_core]\ndevlink_nl_cmd_eswitch_set_doit+0xdc/0x180\ngenl_family_rcv_msg_doit.isra.17+0xe8/0x138\ngenl_rcv_msg+0xe4/0x220\nnetlink_rcv_skb+0x44/0x108\ngenl_rcv+0x40/0x58\nnetlink_unicast+0x198/0x268\nnetlink_sendmsg+0x1d4/0x418\nsock_sendmsg+0x54/0x60\n__sys_sendto+0xf4/0x120\n__arm64_sys_sendto+0x30/0x40\nel0_svc_common+0x8c/0x120\ndo_el0_svc+0x30/0xa0\nel0_svc+0x20/0x30\nel0_sync_handler+0x90/0xb8\nel0_sync+0x160/0x180\n\nThus, upon lag enable/disable, load and unload only the IB representors\nof the slaves preventing the deadlock mentioned above.\n\nWhile at it, refactor the mlx5_esw_offloads_rep_load() function to have\na static helper method for its internal logic, in symmetry with the\nrepresentor unload design.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38557",
"url": "https://www.suse.com/security/cve/CVE-2024-38557"
},
{
"category": "external",
"summary": "SUSE Bug 1226781 for CVE-2024-38557",
"url": "https://bugzilla.suse.com/1226781"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-38557"
},
{
"cve": "CVE-2024-38558",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38558"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: openvswitch: fix overwriting ct original tuple for ICMPv6\n\nOVS_PACKET_CMD_EXECUTE has 3 main attributes:\n - OVS_PACKET_ATTR_KEY - Packet metadata in a netlink format.\n - OVS_PACKET_ATTR_PACKET - Binary packet content.\n - OVS_PACKET_ATTR_ACTIONS - Actions to execute on the packet.\n\nOVS_PACKET_ATTR_KEY is parsed first to populate sw_flow_key structure\nwith the metadata like conntrack state, input port, recirculation id,\netc. Then the packet itself gets parsed to populate the rest of the\nkeys from the packet headers.\n\nWhenever the packet parsing code starts parsing the ICMPv6 header, it\nfirst zeroes out fields in the key corresponding to Neighbor Discovery\ninformation even if it is not an ND packet.\n\nIt is an \u0027ipv6.nd\u0027 field. However, the \u0027ipv6\u0027 is a union that shares\nthe space between \u0027nd\u0027 and \u0027ct_orig\u0027 that holds the original tuple\nconntrack metadata parsed from the OVS_PACKET_ATTR_KEY.\n\nND packets should not normally have conntrack state, so it\u0027s fine to\nshare the space, but normal ICMPv6 Echo packets or maybe other types of\nICMPv6 can have the state attached and it should not be overwritten.\n\nThe issue results in all but the last 4 bytes of the destination\naddress being wiped from the original conntrack tuple leading to\nincorrect packet matching and potentially executing wrong actions\nin case this packet recirculates within the datapath or goes back\nto userspace.\n\nND fields should not be accessed in non-ND packets, so not clearing\nthem should be fine. Executing memset() only for actual ND packets to\navoid the issue.\n\nInitializing the whole thing before parsing is needed because ND packet\nmay not contain all the options.\n\nThe issue only affects the OVS_PACKET_CMD_EXECUTE path and doesn\u0027t\naffect packets entering OVS datapath from network interfaces, because\nin this case CT metadata is populated from skb after the packet is\nalready parsed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38558",
"url": "https://www.suse.com/security/cve/CVE-2024-38558"
},
{
"category": "external",
"summary": "SUSE Bug 1226783 for CVE-2024-38558",
"url": "https://bugzilla.suse.com/1226783"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-38558"
},
{
"cve": "CVE-2024-38559",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38559"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qedf: Ensure the copied buf is NUL terminated\n\nCurrently, we allocate a count-sized kernel buffer and copy count from\nuserspace to that buffer. Later, we use kstrtouint on this buffer but we\ndon\u0027t ensure that the string is terminated inside the buffer, this can\nlead to OOB read when using kstrtouint. Fix this issue by using\nmemdup_user_nul instead of memdup_user.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38559",
"url": "https://www.suse.com/security/cve/CVE-2024-38559"
},
{
"category": "external",
"summary": "SUSE Bug 1226785 for CVE-2024-38559",
"url": "https://bugzilla.suse.com/1226785"
},
{
"category": "external",
"summary": "SUSE Bug 1227495 for CVE-2024-38559",
"url": "https://bugzilla.suse.com/1227495"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-38559"
},
{
"cve": "CVE-2024-38560",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38560"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: bfa: Ensure the copied buf is NUL terminated\n\nCurrently, we allocate a nbytes-sized kernel buffer and copy nbytes from\nuserspace to that buffer. Later, we use sscanf on this buffer but we don\u0027t\nensure that the string is terminated inside the buffer, this can lead to\nOOB read when using sscanf. Fix this issue by using memdup_user_nul instead\nof memdup_user.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38560",
"url": "https://www.suse.com/security/cve/CVE-2024-38560"
},
{
"category": "external",
"summary": "SUSE Bug 1226786 for CVE-2024-38560",
"url": "https://bugzilla.suse.com/1226786"
},
{
"category": "external",
"summary": "SUSE Bug 1227319 for CVE-2024-38560",
"url": "https://bugzilla.suse.com/1227319"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-38560"
},
{
"cve": "CVE-2024-38562",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38562"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: nl80211: Avoid address calculations via out of bounds array indexing\n\nBefore request-\u003echannels[] can be used, request-\u003en_channels must be set.\nAdditionally, address calculations for memory after the \"channels\" array\nneed to be calculated from the allocation base (\"request\") rather than\nvia the first \"out of bounds\" index of \"channels\", otherwise run-time\nbounds checking will throw a warning.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38562",
"url": "https://www.suse.com/security/cve/CVE-2024-38562"
},
{
"category": "external",
"summary": "SUSE Bug 1226788 for CVE-2024-38562",
"url": "https://bugzilla.suse.com/1226788"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-38562"
},
{
"cve": "CVE-2024-38564",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38564"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Add BPF_PROG_TYPE_CGROUP_SKB attach type enforcement in BPF_LINK_CREATE\n\nbpf_prog_attach uses attach_type_to_prog_type to enforce proper\nattach type for BPF_PROG_TYPE_CGROUP_SKB. link_create uses\nbpf_prog_get and relies on bpf_prog_attach_check_attach_type\nto properly verify prog_type \u003c\u003e attach_type association.\n\nAdd missing attach_type enforcement for the link_create case.\nOtherwise, it\u0027s currently possible to attach cgroup_skb prog\ntypes to other cgroup hooks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38564",
"url": "https://www.suse.com/security/cve/CVE-2024-38564"
},
{
"category": "external",
"summary": "SUSE Bug 1226789 for CVE-2024-38564",
"url": "https://bugzilla.suse.com/1226789"
},
{
"category": "external",
"summary": "SUSE Bug 1228730 for CVE-2024-38564",
"url": "https://bugzilla.suse.com/1228730"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "important"
}
],
"title": "CVE-2024-38564"
},
{
"cve": "CVE-2024-38565",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38565"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ar5523: enable proper endpoint verification\n\nSyzkaller reports [1] hitting a warning about an endpoint in use\nnot having an expected type to it.\n\nFix the issue by checking for the existence of all proper\nendpoints with their according types intact.\n\nSadly, this patch has not been tested on real hardware.\n\n[1] Syzkaller report:\n------------[ cut here ]------------\nusb 1-1: BOGUS urb xfer, pipe 3 != type 1\nWARNING: CPU: 0 PID: 3643 at drivers/usb/core/urb.c:504 usb_submit_urb+0xed6/0x1880 drivers/usb/core/urb.c:504\n...\nCall Trace:\n \u003cTASK\u003e\n ar5523_cmd+0x41b/0x780 drivers/net/wireless/ath/ar5523/ar5523.c:275\n ar5523_cmd_read drivers/net/wireless/ath/ar5523/ar5523.c:302 [inline]\n ar5523_host_available drivers/net/wireless/ath/ar5523/ar5523.c:1376 [inline]\n ar5523_probe+0x14b0/0x1d10 drivers/net/wireless/ath/ar5523/ar5523.c:1655\n usb_probe_interface+0x30f/0x7f0 drivers/usb/core/driver.c:396\n call_driver_probe drivers/base/dd.c:560 [inline]\n really_probe+0x249/0xb90 drivers/base/dd.c:639\n __driver_probe_device+0x1df/0x4d0 drivers/base/dd.c:778\n driver_probe_device+0x4c/0x1a0 drivers/base/dd.c:808\n __device_attach_driver+0x1d4/0x2e0 drivers/base/dd.c:936\n bus_for_each_drv+0x163/0x1e0 drivers/base/bus.c:427\n __device_attach+0x1e4/0x530 drivers/base/dd.c:1008\n bus_probe_device+0x1e8/0x2a0 drivers/base/bus.c:487\n device_add+0xbd9/0x1e90 drivers/base/core.c:3517\n usb_set_configuration+0x101d/0x1900 drivers/usb/core/message.c:2170\n usb_generic_driver_probe+0xbe/0x100 drivers/usb/core/generic.c:238\n usb_probe_device+0xd8/0x2c0 drivers/usb/core/driver.c:293\n call_driver_probe drivers/base/dd.c:560 [inline]\n really_probe+0x249/0xb90 drivers/base/dd.c:639\n __driver_probe_device+0x1df/0x4d0 drivers/base/dd.c:778\n driver_probe_device+0x4c/0x1a0 drivers/base/dd.c:808\n __device_attach_driver+0x1d4/0x2e0 drivers/base/dd.c:936\n bus_for_each_drv+0x163/0x1e0 drivers/base/bus.c:427\n __device_attach+0x1e4/0x530 drivers/base/dd.c:1008\n bus_probe_device+0x1e8/0x2a0 drivers/base/bus.c:487\n device_add+0xbd9/0x1e90 drivers/base/core.c:3517\n usb_new_device.cold+0x685/0x10ad drivers/usb/core/hub.c:2573\n hub_port_connect drivers/usb/core/hub.c:5353 [inline]\n hub_port_connect_change drivers/usb/core/hub.c:5497 [inline]\n port_event drivers/usb/core/hub.c:5653 [inline]\n hub_event+0x26cb/0x45d0 drivers/usb/core/hub.c:5735\n process_one_work+0x9bf/0x1710 kernel/workqueue.c:2289\n worker_thread+0x669/0x1090 kernel/workqueue.c:2436\n kthread+0x2e8/0x3a0 kernel/kthread.c:376\n ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:306\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38565",
"url": "https://www.suse.com/security/cve/CVE-2024-38565"
},
{
"category": "external",
"summary": "SUSE Bug 1226747 for CVE-2024-38565",
"url": "https://bugzilla.suse.com/1226747"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-38565"
},
{
"cve": "CVE-2024-38566",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38566"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix verifier assumptions about socket-\u003esk\n\nThe verifier assumes that \u0027sk\u0027 field in \u0027struct socket\u0027 is valid\nand non-NULL when \u0027socket\u0027 pointer itself is trusted and non-NULL.\nThat may not be the case when socket was just created and\npassed to LSM socket_accept hook.\nFix this verifier assumption and adjust tests.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38566",
"url": "https://www.suse.com/security/cve/CVE-2024-38566"
},
{
"category": "external",
"summary": "SUSE Bug 1226790 for CVE-2024-38566",
"url": "https://bugzilla.suse.com/1226790"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-38566"
},
{
"cve": "CVE-2024-38567",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38567"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: carl9170: add a proper sanity check for endpoints\n\nSyzkaller reports [1] hitting a warning which is caused by presence\nof a wrong endpoint type at the URB sumbitting stage. While there\nwas a check for a specific 4th endpoint, since it can switch types\nbetween bulk and interrupt, other endpoints are trusted implicitly.\nSimilar warning is triggered in a couple of other syzbot issues [2].\n\nFix the issue by doing a comprehensive check of all endpoints\ntaking into account difference between high- and full-speed\nconfiguration.\n\n[1] Syzkaller report:\n...\nWARNING: CPU: 0 PID: 4721 at drivers/usb/core/urb.c:504 usb_submit_urb+0xed6/0x1880 drivers/usb/core/urb.c:504\n...\nCall Trace:\n \u003cTASK\u003e\n carl9170_usb_send_rx_irq_urb+0x273/0x340 drivers/net/wireless/ath/carl9170/usb.c:504\n carl9170_usb_init_device drivers/net/wireless/ath/carl9170/usb.c:939 [inline]\n carl9170_usb_firmware_finish drivers/net/wireless/ath/carl9170/usb.c:999 [inline]\n carl9170_usb_firmware_step2+0x175/0x240 drivers/net/wireless/ath/carl9170/usb.c:1028\n request_firmware_work_func+0x130/0x240 drivers/base/firmware_loader/main.c:1107\n process_one_work+0x9bf/0x1710 kernel/workqueue.c:2289\n worker_thread+0x669/0x1090 kernel/workqueue.c:2436\n kthread+0x2e8/0x3a0 kernel/kthread.c:376\n ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:308\n \u003c/TASK\u003e\n\n[2] Related syzkaller crashes:",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38567",
"url": "https://www.suse.com/security/cve/CVE-2024-38567"
},
{
"category": "external",
"summary": "SUSE Bug 1226769 for CVE-2024-38567",
"url": "https://bugzilla.suse.com/1226769"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-38567"
},
{
"cve": "CVE-2024-38568",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38568"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrivers/perf: hisi: hns3: Fix out-of-bound access when valid event group\n\nThe perf tool allows users to create event groups through following\ncmd [1], but the driver does not check whether the array index is out\nof bounds when writing data to the event_group array. If the number of\nevents in an event_group is greater than HNS3_PMU_MAX_HW_EVENTS, the\nmemory write overflow of event_group array occurs.\n\nAdd array index check to fix the possible array out of bounds violation,\nand return directly when write new events are written to array bounds.\n\nThere are 9 different events in an event_group.\n[1] perf stat -e \u0027{pmu/event1/, ... ,pmu/event9/}",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38568",
"url": "https://www.suse.com/security/cve/CVE-2024-38568"
},
{
"category": "external",
"summary": "SUSE Bug 1226771 for CVE-2024-38568",
"url": "https://bugzilla.suse.com/1226771"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-38568"
},
{
"cve": "CVE-2024-38569",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38569"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrivers/perf: hisi_pcie: Fix out-of-bound access when valid event group\n\nThe perf tool allows users to create event groups through following\ncmd [1], but the driver does not check whether the array index is out of\nbounds when writing data to the event_group array. If the number of events\nin an event_group is greater than HISI_PCIE_MAX_COUNTERS, the memory write\noverflow of event_group array occurs.\n\nAdd array index check to fix the possible array out of bounds violation,\nand return directly when write new events are written to array bounds.\n\nThere are 9 different events in an event_group.\n[1] perf stat -e \u0027{pmu/event1/, ... ,pmu/event9/}\u0027",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38569",
"url": "https://www.suse.com/security/cve/CVE-2024-38569"
},
{
"category": "external",
"summary": "SUSE Bug 1226772 for CVE-2024-38569",
"url": "https://bugzilla.suse.com/1226772"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-38569"
},
{
"cve": "CVE-2024-38570",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38570"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngfs2: Fix potential glock use-after-free on unmount\n\nWhen a DLM lockspace is released and there ares still locks in that\nlockspace, DLM will unlock those locks automatically. Commit\nfb6791d100d1b started exploiting this behavior to speed up filesystem\nunmount: gfs2 would simply free glocks it didn\u0027t want to unlock and then\nrelease the lockspace. This didn\u0027t take the bast callbacks for\nasynchronous lock contention notifications into account, which remain\nactive until until a lock is unlocked or its lockspace is released.\n\nTo prevent those callbacks from accessing deallocated objects, put the\nglocks that should not be unlocked on the sd_dead_glocks list, release\nthe lockspace, and only then free those glocks.\n\nAs an additional measure, ignore unexpected ast and bast callbacks if\nthe receiving glock is dead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38570",
"url": "https://www.suse.com/security/cve/CVE-2024-38570"
},
{
"category": "external",
"summary": "SUSE Bug 1226775 for CVE-2024-38570",
"url": "https://bugzilla.suse.com/1226775"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-38570"
},
{
"cve": "CVE-2024-38571",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38571"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nthermal/drivers/tsens: Fix null pointer dereference\n\ncompute_intercept_slope() is called from calibrate_8960() (in tsens-8960.c)\nas compute_intercept_slope(priv, p1, NULL, ONE_PT_CALIB) which lead to null\npointer dereference (if DEBUG or DYNAMIC_DEBUG set).\nFix this bug by adding null pointer check.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38571",
"url": "https://www.suse.com/security/cve/CVE-2024-38571"
},
{
"category": "external",
"summary": "SUSE Bug 1226737 for CVE-2024-38571",
"url": "https://bugzilla.suse.com/1226737"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-08-13T14:09:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-38571"
},
{
"cve": "CVE-2024-38572",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38572"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix out-of-bound access of qmi_invoke_handler()\n\nCurrently, there is no terminator entry for ath12k_qmi_msg_handlers hence\nfacing below KASAN warning,\n\n ==================================================================\n BUG: KASAN: global-out-of-bounds in qmi_invoke_handler+0xa4/0x148\n Read of size 8 at addr ffffffd00a6428d8 by task kworker/u8:2/1273\n\n CPU: 0 PID: 1273 Comm: kworker/u8:2 Not tainted 5.4.213 #0\n Workqueue: qmi_msg_handler qmi_data_ready_work\n Call trace:\n dump_backtrace+0x0/0x20c\n show_stack+0x14/0x1c\n dump_stack+0xe0/0x138\n print_address_description.isra.5+0x30/0x330\n __kasan_report+0x16c/0x1bc\n kasan_report+0xc/0x14\n __asan_load8+0xa8/0xb0\n qmi_invoke_handler+0xa4/0x148\n qmi_handle_message+0x18c/0x1bc\n qmi_data_ready_work+0x4ec/0x528\n process_one_work+0x2c0/0x440\n worker_thread+0x324/0x4b8\n kthread+0x210/0x228\n ret_from_fork+0x10/0x18\n\n The address belongs to the variable:\n ath12k_mac_mon_status_filter_default+0x4bd8/0xfffffffffffe2300 [ath12k]\n [...]\n ==================================================================\n\nAdd a dummy terminator entry at the end to assist the qmi_invoke_handler()\nin traversing up to the terminator entry without accessing an\nout-of-boundary index.\n\nTested-on: QCN9274 hw2.0 PCI WLAN.WBE.1.0.1-00029-QCAHKSWPL_SILICONZ-1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38572",
"url": "https://www.suse.com/security/cve/CVE-2024-38572"
},
{
"category": "external",
"summary": "SUSE Bug 1226776 for CVE-2024-38572",
"url": "https://bugzilla.suse.com/1226776"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.8.2.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.8.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.8.2.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.8.2.x86_64",
"openSUSE